The data of 110,000 Lithuanian-registered users of the car-sharing service CityBee was uploaded in RaidForums, a data leak site.
The hacker exploited a DNS record called CNAME which linked to CityBee azure blob and other things like their website.
The leaked information included data of 110,000 clients had been leaked, including emails, phone numbers, personal codes, and enciphered passwords.
Lithuania's Criminal Police Bureau investigated this incident of data theft.
TPRM report: https://scoringcyber.rankiteo.com/company/citybee-car-sharing
"id": "cit15373622",
"linkid": "citybee-car-sharing",
"type": "Breach",
"date": "02/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 110000,
'industry': 'Car-sharing',
'location': 'Lithuania',
'name': 'CityBee',
'type': 'Company'}],
'attack_vector': 'DNS Exploitation',
'data_breach': {'data_exfiltration': True,
'number_of_records_exposed': 110000,
'personally_identifiable_information': True,
'type_of_data_compromised': ['emails',
'phone numbers',
'personal codes',
'enciphered passwords']},
'description': 'The data of 110,000 Lithuanian-registered users of the '
'car-sharing service CityBee was uploaded in RaidForums, a '
'data leak site. The hacker exploited a DNS record called '
'CNAME which linked to CityBee azure blob and other things '
'like their website. The leaked information included data of '
'110,000 clients had been leaked, including emails, phone '
'numbers, personal codes, and enciphered passwords. '
"Lithuania's Criminal Police Bureau investigated this incident "
'of data theft.',
'impact': {'data_compromised': ['emails',
'phone numbers',
'personal codes',
'enciphered passwords']},
'initial_access_broker': {'entry_point': 'CNAME DNS record'},
'response': {'law_enforcement_notified': "Lithuania's Criminal Police Bureau"},
'title': 'CityBee Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'CNAME DNS record'}