Account information for more than three million customers of the FlexBooker appointment scheduling service, which is based in the United States, was taken in an attack just before the holidays and is currently being sold on hacker forums.
Both Racing.com and Redbourne Group’s rediCASE case management software are being offered by the same attackers, who are purporting to be from two different Australian entities: racing media company Racing.com and Redbourne Group’s rediCASE case management software.
Breach of the law prior to the holiday season
All three breaches are said to have occurred just a few days before Christmas, and the attacker is said to have posted the information on a hacker forum.
The most recent data dump appears to have come from FlexBooker, a popular tool for booking appointments and synchronizing staff calendars with the corporate calendar.
In according with Uawrongteam, the database comprises a table containing 10 million lines of client information, which includes anything from payment forms and charges to driver’s license photos.
The actor points out that some of the database’s “juicy columns” include names, emails, phone numbers, password salt, and hashed passwords, among other things.
An email message to clients from FlexBooker confirms the incident and states that intruders “accessed and downloaded” data from the service’s Amazon cloud storage system. FlexBooker is a service that allows users to book appointments online.
On December 23, 2021, at approximately 4:05 p.m. Eastern Standard Time (EST), our account on Amazon’s AWS servers was compromised, according to the notification, which notes that the attackers did not gain access to “any credit card or other payment card information.”
FlexBooker, on the other hand, advised users to remain careful and regularly monitor account statements and credit reports for signs of questionable or fraudulent activity.
In addition, the developer directed users to a report on a distributed denial-of-service (DDoS) attack for additional information. Following the incident, it was determined that the hackers had obtained personal information from some of the clients.
As reported by the Have I Been Pwned data breach notification service, the FlexBooker attack compromised the personal information of more than 3.7 million accounts (3,756,794), including email addresses and names, partial credit card data (including expiration dates), passwords, and phone numbers.
Online appointment scheduling service FlexBooker discloses a breach that saw info stolen from 3.7M accounts, including partial credit card info, on December 23 (@ionut_ilascu / BleepingComputer)https://t.co/c4kAjyV01mhttps://t.co/ITEBNDbPUm
— Techmeme (@Techmeme) January 7, 2022
Online appointment scheduling service FlexBooker discloses a breach that saw info stolen from 3.7M accounts, including partial credit card info, on December 23 (Ionut Ilascu/BleepingComputer) https://t.co/kWdH6ihDwz pic.twitter.com/SB0yFpHlPV
— TechnoGrinder (@TechnoGrinder) January 7, 2022
In the days before the release of FlexBooker, the Uawrongteam threat actor distributed links to archived information that was reportedly stolen from Racing.com, a digital television station that broadcasts horse racing while also providing associated news, statistics, and event calendars.
Another target of the same gang appears to be the data from the rediCASE Case Management Software from the Redbourne Group, which is used by a variety of organisations, including health and community agencies, as well as numerous corporations.
Related Articles:
- Osmtechno Com Advantages: Starting a Business Using the Osmtechnology Site Is Simple!
- Calling, Messaging, Data Usage, and 911 Access Will Be Lost Starting January 4th for Blackberry 10 and OS 7.1 Devices (Brad Linder / Liliputing)
- Web3 Paparo Dot Overview: Funding of the Web3 Foundation Is Distributed Into Two Types!
