Egypt fast-tracks recycling plant to turn Suez Canal into 'green canal'    Global pressure mounts on Israel as Gaza death toll surges, war deepens    Egypt targets 7.7% AI contribution to GDP by 2030: Communications Minister    Irrigation Minister highlights Egypt's water challenges, innovation efforts at DAAD centenary celebration    Egypt discusses strengthening agricultural ties, investment opportunities with Indian delegation    Al-Sisi welcomes Spain's monarch in historic first visit, with Gaza, regional peace in focus    Cairo governor briefs PM on Khan el-Khalili, Rameses Square development    El Gouna Film Festival's 8th edition to coincide with UN's 80th anniversary    Egypt expands medical, humanitarian support for Gaza patients    Egypt condemns Israeli offensive in Gaza City, warns of grave regional consequences    Cairo University, Roche Diagnostics inaugurate automated lab at Qasr El-Ainy    Egypt investigates disappearance of ancient bracelet from Egyptian Museum in Tahrir    Egypt launches international architecture academy with UNESCO, European partners    Egypt signs MoUs with 3 European universities to advance architecture, urban studies    Egypt's Sisi, Qatar's Emir condemn Israeli strikes, call for Gaza ceasefire    Egypt condemns terrorist attack in northwest Pakistan    Egyptian pound ends week lower against US dollar – CBE    Egypt hosts G20 meeting for 1st time outside member states    Egypt to tighten waste rules, cut rice straw fees to curb pollution    Egypt seeks Indian expertise to boost pharmaceutical industry    Egypt prepares unified stance ahead of COP30 in Brazil    Egypt harvests 315,000 cubic metres of rainwater in Sinai as part of flash flood protection measures    Al-Sisi says any party thinking Egypt will neglect water rights is 'completely mistaken'    Egyptian, Ugandan Presidents open business forum to boost trade    Egypt's Sisi, Uganda's Museveni discuss boosting ties    Egypt's Sisi warns against unilateral Nile measures, reaffirms Egypt's water security stance    Greco-Roman rock-cut tombs unearthed in Egypt's Aswan    Egypt reveals heritage e-training portal    Sisi launches new support initiative for families of war, terrorism victims    Egypt expands e-ticketing to 110 heritage sites, adds self-service kiosks at Saqqara    Palm Hills Squash Open debuts with 48 international stars, $250,000 prize pool    On Sport to broadcast Pan Arab Golf Championship for Juniors and Ladies in Egypt    Golf Festival in Cairo to mark Arab Golf Federation's 50th anniversary    Germany among EU's priciest labour markets – official data    Paris Olympic gold '24 medals hit record value    A minute of silence for Egyptian sports    Russia says it's in sync with US, China, Pakistan on Taliban    It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game    Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights    Sudan says countries must cooperate on vaccines    Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19    Egypt to tax bloggers, YouTubers    Egypt's FM asserts importance of stability in Libya, holding elections as scheduled    We mustn't lose touch: Muller after Bayern win in Bundesliga    Egypt records 36 new deaths from Covid-19, highest since mid June    Egypt sells $3 bln US-dollar dominated eurobonds    Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go    Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



'Hello Kitty' fan site exposed, but no data stolen-web host
Reuters Published in Ahram Online on 22 - 12 - 2015

More than three million accounts of Hello Kitty fans were left vulnerable to theft by hackers, but there is no evidence any data has been stolen, the Hong Kong-based company hosting the data said on Tuesday.
A spokesman for Sanrio Digital, part-owned by Sanrio Co Ltd , the Japanese owner of the Hello Kitty brand, said it had fixed the hole after being notified by security researcher Chris Vickery that personal information of its users was accessible.
Vickery told Reuters by e-mail that the company had plugged the holes he had found in three servers. But he said the database had been exposed for nearly a month, meaning that anyone who knew its internet address could have accessed it.
"It would have been extremely easy for a bad guy to take the data," he said. "Extremely easy. Almost as easy as downloading a web page."
Sanrio Digital said in a statement that "at this time we have no indication that any personal information was stolen."
The spokesman said 3.3 million accounts had been vulnerable, including the names, ages and gender of fans. He said that the accounts all belonged to users of the SanrioTown.com website, a community for fans of Hello Kitty.
No credit card or other payment information was included in the vulnerable data, and passwords "were securely encrypted," according to the statement.
The spokesman said while the company technically doesn't allow minors to sign up, this was implemented through an honour system, meaning that those younger than 13 could register by lying about their age.
News of the hole in the Sanrio Digital-hosted site follows last month's breach of another Hong Kong company, electronic toymaker VTech Holdings Ltd. Millions of records of parents and children were compromised.
In that case the hacker who found the vulnerability stole the data but shared some of it with a researcher and was reported as saying he had no plans to sell it. UK police arrested a 21-year old man last week in connection with the hack.
U.S.-based Vickery, who explores security vulnerabilities in his spare time and reports them to the affected companies, said the hole in the Hello Kitty site was the result of a simple misconfiguration of a database, leaving it open to public access without a password or authentication.
He said he had found thousands of similar vulnerabilities simply by searching an online database of connected devices.
http://english.ahram.org.eg/News/175158.aspx

Clic here to read the story from its source.