Mumsnet Data Leak Baffled Parents As Cloud Migration Exposed Users' Personal Data
(Feb 10, 2019)
The parenting forum website, "Mumsnet," suffered a data breach following migrating their services to the cloud. Between 2 pm on February 5 and 9 am on February 7, 2019, users that attempted to log into the website could have accessed another user's account information if two users were logging into the site simultaneously. Because of the software change that was occurring at that time, users could view the details of other users including account details, email addresses, personal messages, and posting history. Mumsnet was notified by a user to the issue, and they promptly fixed the issue.
Recommendation: When undergoing migrations to the cloud, organisations should ensure that they have proper data security before the migration process. This means that internal infrastructure is properly configured and secured, particularly databases and servers. Security-in-depth is always important to have, ensuring security at every level (human, IT, cloud, etc.). Leaks of this sort causes individuals to be at a large risk of phishing attacks. Actors can use this information to coerce more personal data from the victim. Users should also monitor their credit in order to make sure that nothing out of the ordinary is happening and no identity fraud is being committed.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.