The company collects identification documents to comply with US anti-money laundering regulations. But the server lacked a password, allowing unauthorized access to more than 600,000 identity documents of approximately 200,000 customers. The attack was discovered by a security researcher who reported it to TechCrunch after MyGiftCardSupply did not respond to his emails.
MyGiftCardSupply confirmed the hack and stated that the data is now safe. The company conducts process audits. But it did not say how long the data had been publicly available or whether affected individuals would be notified.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
