DomainFactory GmbH

German hosting provider Domain Factory experienced a data breach which has exposed customer data.

An unknown threat actor posted claims of managed to compromise the firm's systems and access information.

Customer names, numbers, physical addresses, email addresses, phone numbers, and dates of birth were included in the breach, alongside account passwords, bank names, and account numbers, such as IBAN and BIC.

Domain Factory is not only suggesting that customers change their account credentials, but also MySQL, SSH, FTP, and Live disk passwords as their websites may also be compromised due to the data leak.

Source: https://www.zdnet.com/article/user-data-exposed-in-domain-factory-hosting-security-breach/

TPRM report: https://scoringcyber.rankiteo.com/company/domainfactory-gmbh

"id": "dom2147101122",
"linkid": "domainfactory-gmbh",
"type": "Data Leak",
"date": "07/2018",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'industry': 'Technology',
                        'location': 'Germany',
                        'name': 'Domain Factory',
                        'type': 'Hosting Provider'}],
 'customer_advisories': ['Change account credentials',
                         'Change MySQL, SSH, FTP, and Live disk passwords'],
 'data_breach': {'personally_identifiable_information': ['Customer names',
                                                         'Physical addresses',
                                                         'Email addresses',
                                                         'Phone numbers',
                                                         'Dates of birth'],
                 'type_of_data_compromised': ['Customer names',
                                              'Numbers',
                                              'Physical addresses',
                                              'Email addresses',
                                              'Phone numbers',
                                              'Dates of birth',
                                              'Account passwords',
                                              'Bank names',
                                              'Account numbers',
                                              'IBAN',
                                              'BIC']},
 'description': 'German hosting provider Domain Factory experienced a data '
                'breach which has exposed customer data.',
 'impact': {'data_compromised': ['Customer names',
                                 'Numbers',
                                 'Physical addresses',
                                 'Email addresses',
                                 'Phone numbers',
                                 'Dates of birth',
                                 'Account passwords',
                                 'Bank names',
                                 'Account numbers',
                                 'IBAN',
                                 'BIC']},
 'recommendations': ['Change account credentials',
                     'Change MySQL, SSH, FTP, and Live disk passwords'],
 'response': {'remediation_measures': ['Customers advised to change account '
                                       'credentials',
                                       'Customers advised to change MySQL, '
                                       'SSH, FTP, and Live disk passwords']},
 'threat_actor': 'Unknown',
 'title': 'Domain Factory Data Breach',
 'type': 'Data Breach'}