"Hackers revealed they had compromised the account of a third-party Crunchyroll support agent, gaining access to internal systems and user data. They shared samples of the stolen data as proof."
"By using malware to compromise a support agent's computer, they got access to both the agent's computer and the internal Crunchyroll applications the agent used, allowing them to exfiltrate support ticket data."
"The hackers said they downloaded 8 million support ticket records, which contained 6.8 million unique email addresses, usernames, login names, IP addresses, and general geolocation information."
"Compromising a third-party vendor follows a common trend among threat actors, as many organizations outsource operations to third-party vendors through Business Process Outsourcing."
Hackers compromised a third-party support agent's account at Crunchyroll, gaining access to internal systems and user data. They exploited Telus Digital, a vendor, using malware to infiltrate the agent's computer. This breach allowed the hackers to download 8 million support ticket records, including 6.8 million unique email addresses, usernames, login names, IP addresses, and geolocation information. Some support tickets contained credit card information, although most displayed only the last four digits. Crunchyroll has initiated an investigation into the breach.
Read at TechRepublic
Unable to calculate read time
Collection
[
|
...
]