/

What happened in the Reddoorz data breach?

What happened in the Reddoorz data breach?

Twingate Team

May 9, 2024

In September 2020, the hotel management and booking platform RedDoorz experienced a significant data breach. The incident exposed a large number of user accounts, compromising various types of personal information. The breach led to the Personal Data Protection Commission (PDPC) imposing a fine on the company for failing to prevent the unauthorized access. This event highlights the importance of robust security measures to protect sensitive data in the digital age.

How many accounts were compromised?

The breach impacted data related to approximately 5.9 million individuals.

What data was leaked?

The data exposed in the breach encompassed dates of birth, email addresses, genders, names, occupations, passwords, and phone numbers.

How was Reddoorz hacked?

Hackers gained access to RedDoorz's database by obtaining an Amazon Web Services access key embedded in an Android application package (APK) created by the company in 2015. The APK, which was publicly available for download from the Google Play store, allowed the hackers to access the company's database hosted on an Amazon cloud database. The main vulnerability was the inclusion of the access key in the APK, which is against Amazon Web Service's advice to not embed access keys directly into code.

Reddoorz's solution

In response to the data breach, RedDoorz implemented several enhanced security measures to protect its platform and prevent future hacking incidents. These measures included amending their credential policy to prohibit developers from embedding access codes in any code base, upgrading their infrastructure to a private space to isolate the customer database from the Internet, and enabling two-factor authentication for all tools and accounts used by developers. Additionally, RedDoorz separated the accounts for production and staging environments for all AWS services, and informed affected customers of the breach, advising them to change their passwords as a precautionary measure.

How do I know if I was affected?

RedDoorz informed affected customers of the breach and advised them to change their passwords as a precautionary measure. If you're a RedDoorz customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For more specific help and instructions related to RedDoorz's data breach, please contact RedDoorz support directly.

Where can I go to learn more?

If you want to find more information on the RedDoorz data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

What happened in the Reddoorz data breach?

What happened in the Reddoorz data breach?

Twingate Team

May 9, 2024

In September 2020, the hotel management and booking platform RedDoorz experienced a significant data breach. The incident exposed a large number of user accounts, compromising various types of personal information. The breach led to the Personal Data Protection Commission (PDPC) imposing a fine on the company for failing to prevent the unauthorized access. This event highlights the importance of robust security measures to protect sensitive data in the digital age.

How many accounts were compromised?

The breach impacted data related to approximately 5.9 million individuals.

What data was leaked?

The data exposed in the breach encompassed dates of birth, email addresses, genders, names, occupations, passwords, and phone numbers.

How was Reddoorz hacked?

Hackers gained access to RedDoorz's database by obtaining an Amazon Web Services access key embedded in an Android application package (APK) created by the company in 2015. The APK, which was publicly available for download from the Google Play store, allowed the hackers to access the company's database hosted on an Amazon cloud database. The main vulnerability was the inclusion of the access key in the APK, which is against Amazon Web Service's advice to not embed access keys directly into code.

Reddoorz's solution

In response to the data breach, RedDoorz implemented several enhanced security measures to protect its platform and prevent future hacking incidents. These measures included amending their credential policy to prohibit developers from embedding access codes in any code base, upgrading their infrastructure to a private space to isolate the customer database from the Internet, and enabling two-factor authentication for all tools and accounts used by developers. Additionally, RedDoorz separated the accounts for production and staging environments for all AWS services, and informed affected customers of the breach, advising them to change their passwords as a precautionary measure.

How do I know if I was affected?

RedDoorz informed affected customers of the breach and advised them to change their passwords as a precautionary measure. If you're a RedDoorz customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For more specific help and instructions related to RedDoorz's data breach, please contact RedDoorz support directly.

Where can I go to learn more?

If you want to find more information on the RedDoorz data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

What happened in the Reddoorz data breach?

Twingate Team

May 9, 2024

In September 2020, the hotel management and booking platform RedDoorz experienced a significant data breach. The incident exposed a large number of user accounts, compromising various types of personal information. The breach led to the Personal Data Protection Commission (PDPC) imposing a fine on the company for failing to prevent the unauthorized access. This event highlights the importance of robust security measures to protect sensitive data in the digital age.

How many accounts were compromised?

The breach impacted data related to approximately 5.9 million individuals.

What data was leaked?

The data exposed in the breach encompassed dates of birth, email addresses, genders, names, occupations, passwords, and phone numbers.

How was Reddoorz hacked?

Hackers gained access to RedDoorz's database by obtaining an Amazon Web Services access key embedded in an Android application package (APK) created by the company in 2015. The APK, which was publicly available for download from the Google Play store, allowed the hackers to access the company's database hosted on an Amazon cloud database. The main vulnerability was the inclusion of the access key in the APK, which is against Amazon Web Service's advice to not embed access keys directly into code.

Reddoorz's solution

In response to the data breach, RedDoorz implemented several enhanced security measures to protect its platform and prevent future hacking incidents. These measures included amending their credential policy to prohibit developers from embedding access codes in any code base, upgrading their infrastructure to a private space to isolate the customer database from the Internet, and enabling two-factor authentication for all tools and accounts used by developers. Additionally, RedDoorz separated the accounts for production and staging environments for all AWS services, and informed affected customers of the breach, advising them to change their passwords as a precautionary measure.

How do I know if I was affected?

RedDoorz informed affected customers of the breach and advised them to change their passwords as a precautionary measure. If you're a RedDoorz customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For more specific help and instructions related to RedDoorz's data breach, please contact RedDoorz support directly.

Where can I go to learn more?

If you want to find more information on the RedDoorz data breach, check out the following news articles: