Egypt After 2025: Navigating a Critical Inflection Point    Spot Gold, futures slips on Thursday, July 17th    Egypt's EHA, Huawei discuss enhanced digital health    Egypt expresses condolences to Iraq over fire tragedy    Egypt, Oman discuss environmental cooperation    Egypt's Environment Minister attends AMCEN conference in Nairobi    At London 'Egypt Day', Finance Minister outlines pro-investment policies    Sukari Gold Mine showcases successful public–private partnership: Minister of Petroleum    Egypt's FRA chief vows to reform business environment to boost investor confidence    Egyptian, Belarusian officials discuss drug registration, market access    Syria says it will defend its territory after Israeli strikes in Suwayda    Pakistan names Qatari royal as brand ambassador after 'Killer Mountain' climb    Health Ministry denies claims of meningitis-related deaths among siblings    Sri Lanka's expat remittances up in June '25    EU–US trade talks enter 'decisive phase', German politician says    Egypt's Health Min. discusses drug localisation with Sandoz    Needle-spiking attacks in France prompt government warning, public fear    Foreign, housing ministers discuss Egypt's role in African development push    Korea Culture Week in Egypt to blend K-Pop with traditional arts    Egypt, France FMs review Gaza ceasefire efforts, reconstruction    CIB finances Giza Pyramids Sound and Light Show redevelopment with EGP 963m loan    Greco-Roman tombs with hieroglyphic inscriptions discovered in Aswan    Egypt reveals heritage e-training portal    Three ancient rock-cut tombs discovered in Aswan    Sisi launches new support initiative for families of war, terrorism victims    Egypt expands e-ticketing to 110 heritage sites, adds self-service kiosks at Saqqara    Egypt's Irrigation Minister urges scientific cooperation to tackle water scarcity    Palm Hills Squash Open debuts with 48 international stars, $250,000 prize pool    Egypt's Democratic Generation Party Evaluates 84 Candidates Ahead of Parliamentary Vote    On Sport to broadcast Pan Arab Golf Championship for Juniors and Ladies in Egypt    Golf Festival in Cairo to mark Arab Golf Federation's 50th anniversary    Germany among EU's priciest labour markets – official data    Cabinet approves establishment of national medical tourism council to boost healthcare sector    Egypt's PM follows up on Julius Nyerere dam project in Tanzania    Paris Olympic gold '24 medals hit record value    A minute of silence for Egyptian sports    Russia says it's in sync with US, China, Pakistan on Taliban    It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game    Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights    Sudan says countries must cooperate on vaccines    Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19    Egypt to tax bloggers, YouTubers    Egypt's FM asserts importance of stability in Libya, holding elections as scheduled    We mustn't lose touch: Muller after Bayern win in Bundesliga    Egypt records 36 new deaths from Covid-19, highest since mid June    Egypt sells $3 bln US-dollar dominated eurobonds    Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go    Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



'Hello Kitty' fan site exposed, but no data stolen-web host
Reuters Published in Ahram Online on 22 - 12 - 2015

More than three million accounts of Hello Kitty fans were left vulnerable to theft by hackers, but there is no evidence any data has been stolen, the Hong Kong-based company hosting the data said on Tuesday.
A spokesman for Sanrio Digital, part-owned by Sanrio Co Ltd , the Japanese owner of the Hello Kitty brand, said it had fixed the hole after being notified by security researcher Chris Vickery that personal information of its users was accessible.
Vickery told Reuters by e-mail that the company had plugged the holes he had found in three servers. But he said the database had been exposed for nearly a month, meaning that anyone who knew its internet address could have accessed it.
"It would have been extremely easy for a bad guy to take the data," he said. "Extremely easy. Almost as easy as downloading a web page."
Sanrio Digital said in a statement that "at this time we have no indication that any personal information was stolen."
The spokesman said 3.3 million accounts had been vulnerable, including the names, ages and gender of fans. He said that the accounts all belonged to users of the SanrioTown.com website, a community for fans of Hello Kitty.
No credit card or other payment information was included in the vulnerable data, and passwords "were securely encrypted," according to the statement.
The spokesman said while the company technically doesn't allow minors to sign up, this was implemented through an honour system, meaning that those younger than 13 could register by lying about their age.
News of the hole in the Sanrio Digital-hosted site follows last month's breach of another Hong Kong company, electronic toymaker VTech Holdings Ltd. Millions of records of parents and children were compromised.
In that case the hacker who found the vulnerability stole the data but shared some of it with a researcher and was reported as saying he had no plans to sell it. UK police arrested a 21-year old man last week in connection with the hack.
U.S.-based Vickery, who explores security vulnerabilities in his spare time and reports them to the affected companies, said the hole in the Hello Kitty site was the result of a simple misconfiguration of a database, leaving it open to public access without a password or authentication.
He said he had found thousands of similar vulnerabilities simply by searching an online database of connected devices.
http://english.ahram.org.eg/News/175158.aspx

Clic here to read the story from its source.