Data of 2.4 million Blur password manager users left exposed online

[InfoSec News <alerts () infosecnews org>]

https://www.zdnet.com/article/data-of-2-4-million-blur-password-manager-users-left-exposed-online/

By Catalin Cimpanu
ZDNet News
January 2, 2019

Abine, the company behind the Blur password manager and the DeleteMe 
online privacy protection service, revealed on Monday a data breach 
impacting nearly 2.4 million Blur users, ZDNet has learned.

The breach came to light last year, on December 13, when a security 
researcher contacted the company about a server that exposed a file 
containing sensitive information about Blur users, an Abine spokesperson 
told ZDNet via email.

The company said it followed this initial report with an internal security 
audit to determine the size of the breach. The audit concluded last week, 
and the company made the data leak public on Monday in a post on its blog.

According to Abine, the file that was left freely accessible online 
contained various details about Blur users who registered before January 
6, 2018. Exposed information included:

[...]



--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_