cyber Breach

ABS-CBN Corporation

May 11, 2023 1 min read
ABS-CBN Corporation

Customers of ABS-CBN experienced theft of their financial data due to a payment skimmer which has been discovered in the major Filipino broadcaster's online store.

ABS-CBN is a media conglomerate based in Quezon City, Philippines and it operates the largest TV and cable provider in the country, alongside a variety of television channels and music production outfits.

The payment skimmer is intercepting financial data and sending the stolen information to a server registered in Irkutsk, Russia.

The skimmer has not been modified or changed for a period of four weeks, which suggests that the malware has been in operation since August 16th.

The malicious code scrapes the financial information of payment cards used by customers attempting to buy merchandise from the store.

This information was transferred to a payment collection server called adaptivecss.org.

It is not known how many customers had been involved in the ABS-CBN security breach but ABS-CBN believes that 213 customers "may have been affected."

Source: https://www.zdnet.com/article/broadcasting-giant-abs-cbn-customer-data-stolen-sent-to-russian-servers/

TPRM report: https://scoringcyber.rankiteo.com/company/abs-cbn

"id": "abs154311022",
"linkid": "abs-cbn",
"type": "Data Leak",
"date": "09/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': '213',
                        'industry': 'Media and Entertainment',
                        'location': 'Quezon City, Philippines',
                        'name': 'ABS-CBN',
                        'size': 'Large',
                        'type': 'Media Conglomerate'}],
 'attack_vector': 'Payment Skimmer',
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': '213',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Financial data',
                                              'Payment card information']},
 'date_detected': '2023-09-16',
 'description': 'Customers of ABS-CBN experienced theft of their financial '
                'data due to a payment skimmer which has been discovered in '
                "the major Filipino broadcaster's online store.",
 'impact': {'data_compromised': ['Financial data', 'Payment card information'],
            'payment_information_risk': 'High',
            'systems_affected': ['Online store payment system']},
 'initial_access_broker': {'entry_point': 'Online store',
                           'reconnaissance_period': 'Four weeks'},
 'motivation': 'Financial Gain',
 'post_incident_analysis': {'root_causes': 'Payment skimmer malware'},
 'references': [{'date_accessed': '2023-10-01',
                 'source': 'Cyber Incident Description'}],
 'title': 'Payment Skimmer Theft at ABS-CBN Online Store',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Malicious code in online store'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.