eBay Cyber Security Vulnerability Assessment Uncovers Flaws

passphrases, security, password, email

A recent cyber security vulnerability assessment shows that eBay could face a major data breach.

Earlier this week, it was released that a cyber security vulnerability assessment found flaws on the eBay platform, which could permit hackers to steal personal information and spread malware.

Essentially, the system weakness could provide hackers with an opening to bypass eBay’s code validation checks in order to send malicious JavaScript to an unknowing user. According to the group manager at Check Point Software Technologies, Oded Vanunu, “The eBay attack flow provides cyber-criminals with a very easy way to target users: sending a link to a very attractive product to execute the attack.”

eBay disagrees with the cyber security vulnerability assessment and issued this statement, “As a company, we’re committed to providing a safe and secure marketplace for our millions of customers around the world. We take reported security issues very seriously, and work quickly to evaluate them within the context of our entire security infrastructure.”

Meanwhile, the restaurants owned by Landry’s and Golden Nugget Casinos (Bubba Gump Shrimp Co., Saltgrass Steak House and McCormick & Schmick’s) also faced three periods of data breach between May 2014 and December 2015. Customers’ credit cardholders’ names, card numbers and expiration dates and verification codes were exposed. The perpetrators installed malware on the payment processing devices and lifted the data when cards were swiped. The companies are currently in the process of notifying customers whose data may have been exposed during the periods of the breach. In addition, the companies are also continuing to work with law enforcement in investigating the breach and improving security. In an effort to prevent future hacks, the companies have implemented new cyber security measures such as the utilization of end-to-end encryption.

The services provided by Global Enterprise Strategies, in partnership with Global Data Sentinel, can help businesses prevent these types of attacks and vulnerabilities. Some of the services provided by Global Data Sentinel include: end-to-end encryption, cross-domain control of data, user behavior analytics, recall email and real-time reporting on the status of all data. In addition to this, the Global Data Sentinel system is simple to set up and is scalable to an organization’s unique needs.

Trust in a company that knows security and keep your data within your control. For more information on how Global Data Sentinel can help your company prevent data breaches, click here.

Leave a Reply