Checkout.com confirmed a data breach by ShinyHunters, a well-known hacking collective, which exploited a legacy cloud storage system. The incident occurred due to a failure to properly decommission the outdated platform, allowing access to internal operational documents and onboarding materials. Notably, the hackers did not compromise live payment systems or sensitive customer data, such as merchant funds or credit card information. In response, Checkout.com has emphasized its commitment to transparency, stating they will not pay the ransom requested by the hackers, but instead will donate the equivalent amount to enhance cybercrime research.
The breach highlights vulnerabilities related to forgotten infrastructure, often referred to as ‘zombie systems.’ Despite the incident, the company has begun notifying affected merchants and is working with law enforcement to mitigate potential fallout. Checkout.com’s CTO has publicly taken responsibility for the oversight, expressing regret for the anxiety caused to partners. This event serves as a crucial reminder for organizations to regularly audit their systems and ensure that outdated technologies are properly retired to avoid exploitation by cybercriminals.
👉 Pročitaj original: Cyber Security News
