Another day, another huge data breach.
MoviePass, the subscription-based service that allows users to see a movie per day at theaters, had a data breach exposed by TechCrunch. According to the report, the breach involved a massive database that had 161 million records – including the unencrypted credit card details of 58,000 customers.
There were also other records, such as email addresses and incorrectly typed passwords.
Even worse, it seems that the database has been exposed for months. When security researchers notified MoviePass months ago, they didn’t even bother responding to the warnings. They did, however, respond to Tech Crunch with a statement after the story broke and reached a lot more eyeballs. This is something that they should be taken to task for, as the worst thing that a corporation can do after receiving a legitimate warning about their security is to do nothing.
The statement found at the top of the MoviePass website as of August 22, 2019.
MoviePass are not the only ones making headlines for a data breach this week, either. An adult website, called Luscious, also made waves after data belonging to over a million users was exposed. People who accessed the database were able to view the usernames and email addresses of users – some of whom had addresses that reflected their full names.
Customer data security is an issue that continues to grow. Other recent examples, like the Marriott hack that exposed the data of up to 500 million people, show that data breaches affect companies of any size.
The breaches happen for a number of reasons, including negligence and the use of vulnerable technology.
While data breaches are often out of your control, this doesn’t mean that you can’t take steps that will help keep your accounts and information secure. Here are a few quick tips:
- Do not log into open public networks, especially in places like a café or a mall. These are some of the most vulnerable networks you can join, where your security isn’t often a priority.
- Change your password regularly. This might seem like an old tip, but it’s even more important to change your password at least every quarter, and don’t use old ones in a rotation!
- In addition, don’t use the same password for separate accounts. This makes it much harder for someone to log in to multiple accounts.