Webshop ReplaceDirect and sister site Twindis report data leak – Update




ReplaceDirect and Twindis have to deal with a data breach due to “human error.” Several Tweakers report that they have received phishing emails based on the leaked information. Payment details are according to the parent company does not drained and the leak is now closed.

According to communications from ReplaceDirect and Twindis to its customers involves names, addresses, email addresses, encrypted passwords and order history for customers. The two merchants are part of the same system. Transactions are handled by another company and financial data are thus spared. The parent company says customers have passed through a password reset because it can not guarantee that the encrypted passwords can not be decrypted by an attacker. This applies only possible for users whose data is actually leaked. What exactly handle encryption and ReplaceDirect Twindis wants CEO Mark Lebouille not spend Tweakers.

Following the leak says the company to conduct an additional thorough safety check on its systems. On Monday, April 25th was a customer reported a phishing email based on information known to the merchants. On Tuesday, April 26th the leak was discovered and immediately sealed. The gap that has arisen is even longer than it was present due to incorrect firewall settings.

At Tweakers forum users make mention of phishing mails. These emails are dressed to greatly resemble communication PayPal. Criminals try this way to find out the credentials of users. Users with an account at ReplaceDirect or Twindis do well to change their passwords if other sites are the same as the retailers in question. Moreover, it is important to remain critical of emails, for example PayPal. The phishing emails are prima facie in fact very convincing.

Update, 13:46: it turns out that not only ReplaceDirect but sister site Twindis related to the same data breach. The article is adapted.

In: Technology & Gadgets Asked By: [18114 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »