CP
cyberpings
BreachesHIGH

Aura Data Breach - 900,000 Records Exposed in Attack

HNHelp Net Security
AuraShinyHuntersdata breachphishingcontact information
🎯

Basically, Aura had a data breach where hackers stole contact information from a phishing attack.

Quick Summary

Aura has confirmed a data breach exposing 900,000 records due to a phishing attack. Affected individuals include active and former customers. The notorious hacking group ShinyHunters is believed to be behind the breach, raising concerns about data security.

What Happened

Aura, an online safety service, recently confirmed a significant data breach. An unauthorized party accessed approximately 900,000 records, primarily consisting of names and email addresses. This breach was linked to a marketing tool from a company Aura acquired in 2021. The breach stemmed from a targeted phone phishing attack that successfully tricked one of Aura's employees.

The company believes that the exposed data includes contact information for less than 20,000 active customers and 15,000 former customers. In addition to names and email addresses, the compromised records also contained IP addresses, phone numbers, home addresses, and customer service comments. Fortunately, Aura reported that no Social Security numbers, passwords, or financial information were compromised in this incident.

Who's Affected

The breach has raised concerns among Aura's customer base. While the company is still assessing the full impact, the affected records indicate a potential risk to both current and former customers. Aura is in the process of notifying those impacted, emphasizing that they will provide support as needed.

Despite the breach, Aura reassured its customers that it does not expect a significant increase in risk due to the nature of the exposed data. However, the company acknowledged that it fell short of its security standards and is committed to regaining customer trust.

What Data Was Exposed

The data exposed in the breach primarily includes:

  • Names and email addresses of customers
  • IP addresses
  • Phone numbers
  • Home addresses
  • Customer service comments

This information can be used for various malicious purposes, such as phishing attempts or identity theft. The breach underscores the importance of robust security measures, especially in protecting sensitive customer information.

What You Should Do

If you are an Aura customer, it is crucial to stay vigilant. Here are some steps you can take to protect yourself:

  • Monitor your accounts for any suspicious activity.
  • Change passwords for any accounts associated with the exposed email addresses.
  • Be cautious of phishing attempts, especially emails or calls requesting personal information.

Aura has activated its incident response plan and engaged external cybersecurity experts to address the situation. They have also notified law enforcement to aid in the investigation. Customers are encouraged to reach out to Aura for further assistance or if they have concerns regarding their data security.

🔒 Pro insight: The involvement of ShinyHunters suggests a targeted approach; organizations should enhance employee training to combat phishing threats.

Original article from

Help Net Security · Sinisa Markovic

Read Full Article

Share

Related Pings

HIGHBreaches

Data Breach - Major Verizon Retailer's Records Stolen

A major data breach has hit Russell Cellular, a Verizon retailer, with over 6.3 million customer records stolen. This breach poses significant risks to customers and employees alike. Immediate action is required to protect sensitive information.

SC Media·
HIGHBreaches

Data Breach - Aura Exposes 900,000 Marketing Contacts

Aura confirmed a data breach exposing 900,000 customer records. Names and emails were compromised, raising identity theft concerns. Aura is notifying affected individuals and working with experts.

BleepingComputer·
HIGHBreaches

Data Breach - Over 670,000 Affected by Marquis Software Attack

A massive data breach at Marquis Software has impacted over 670,000 individuals. Sensitive information, including Social Security numbers, has been exposed. This incident raises serious privacy concerns for numerous financial institutions involved. Stay alert for updates and protective measures.

The Record·
MEDIUMBreaches

Stryker - Restoring Ordering and Shipping Systems After Attack

Stryker is recovering from a cyberattack that disrupted its ordering and shipping systems. The company believes the threat is contained and is restoring operations. This incident highlights the importance of cybersecurity in healthcare.

Cybersecurity Dive·
HIGHBreaches

Data Breach - Marquis Exposes 672,000 Personal Records

Marquis has revealed a ransomware attack affecting over 672,000 people. Personal and financial data, including Social Security numbers, were stolen. This breach raises serious security concerns for those affected.

TechCrunch Security·
HIGHBreaches

Data Breach - Intuitive Hit by Phishing Attack

Intuitive has suffered a data breach following a phishing attack. Customer and corporate data were accessed, raising concerns about data security. The company assures that surgical systems remain unaffected.

SC Media·