Cloud Gaming Firm Shadow Says Hackers Stole Customers' Personal Data (techcrunch.com) 7
French technology company Shadow has confirmed a data breach involving customers' personal information. TechCrunch: The Paris-headquartered startup, which offers gaming through its cloud-based PC service, said in an email to customers this week that hackers had accessed their personal information after a successful social engineering attack targeted the company. "At the end of September, we were the victim of a social engineering attack targeting one of our employees," Shadow CEO Eric Sele said in the email, seen by TechCrunch. "This highly sophisticated attack began on the Discord platform with the downloading of malware under cover of a game on the Steam platform, proposed by an acquaintance of our employee, himself a victim of the same attack."
Shadow said that though its security team took unspecified "immediate action," the hackers were able to connect to the management interface of one of the company's software-as-a-service (SaaS) providers to obtain customers' private data. That data includes full names, email addresses, dates of birth, billing addresses and credit card expiry dates. Shadow says no passwords or sensitive banking data were compromised.
Shadow said that though its security team took unspecified "immediate action," the hackers were able to connect to the management interface of one of the company's software-as-a-service (SaaS) providers to obtain customers' private data. That data includes full names, email addresses, dates of birth, billing addresses and credit card expiry dates. Shadow says no passwords or sensitive banking data were compromised.
Just so y'all know (Score:2)
That's why all of the sillyness with 2FA, and Yubikeys and the like is like giving a person swimming lessons after they have drowned. MAke it 500FA, or make people change 256 character length passwords changed every 20 minutes without re-using any characters from the last Password. - it doesn't matter.
The only ups
Re: (Score:2)
The only person who profits from a lock is a lock maker.
The burglars' motto.
Re: (Score:2)
Re: (Score:2)
Your personal information, including your credit card numbers is already compromised.
Nobody but the banks give a shit about credit cards being compromised. As the consumer, it's a minor annoyance, you have to wait for a replacement card to arrive in the mail and a good bank will overnight that. Then possibly update your recurring transactions, although, some (Discover) will continue to honor those.
Debit card being compromised is a bigger PITA but still not the end of your universe.
I am allowed to be pissed about my fucking PII being compromised. My personal favorite, losing my SSN/DOB/etc. in the T-Mobile data breach, when I haven't had a T-Mobile account in my name since the early oughts, and that account closed in good standing. They had zero fucking reason to retain all that information for that amount of time. Had they not retained it for no reason, it would not have been breached.
Damn right you are allowed to be pissed off about that. By the way, they have all of your info - I was using CC as example. They have your CC, your checking account, your address, your loans and loan history, your online buying, your offline buying, your health and HIPPA info. Basically we are all living a Truman movie, without the video. And perhaps in some cases that as well.
Boost download speed to 1Gb/s with Shadow PC (Score:2)
Re: (Score:2)
Oh, so it's really a seedbox service. Anyone entering their real info when creating an account is an idiot.