Houzz

Houzz

Home-improvement startup Houzz suffered a data breach incident.

An unauthorized third party obtained the user data including names, locations, and personal descriptions; internal identifiers that Houzz uses to clarify its users; and encrypted passwords, IP addresses, and ZIP codes.

The company however investigated the incident and encouraged users to change their passwords as a precautionary measure and to prevent accounts from being compromised.

Source: https://www.remodeling.hw.net/business/houzz-suffers-major-data-breach_c

TPRM report: https://scoringcyber.rankiteo.com/company/houzz

"id": "hou01911222",
"linkid": "houzz",
"type": "Data Leak",
"date": "02/2019",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Home-improvement',
                        'name': 'Houzz',
                        'type': 'Company'}],
 'data_breach': {'data_encryption': ['encrypted passwords'],
                 'personally_identifiable_information': ['names',
                                                         'locations',
                                                         'personal '
                                                         'descriptions',
                                                         'IP addresses',
                                                         'ZIP codes'],
                 'type_of_data_compromised': ['personal information',
                                              'internal identifiers',
                                              'encrypted passwords',
                                              'IP addresses',
                                              'ZIP codes']},
 'description': 'Home-improvement startup Houzz suffered a data breach '
                'incident. An unauthorized third party obtained user data '
                'including names, locations, and personal descriptions; '
                'internal identifiers that Houzz uses to clarify its users; '
                'and encrypted passwords, IP addresses, and ZIP codes. The '
                'company investigated the incident and encouraged users to '
                'change their passwords as a precautionary measure to prevent '
                'accounts from being compromised.',
 'impact': {'data_compromised': ['names',
                                 'locations',
                                 'personal descriptions',
                                 'internal identifiers',
                                 'encrypted passwords',
                                 'IP addresses',
                                 'ZIP codes']},
 'response': {'remediation_measures': ['Encouraged users to change their '
                                       'passwords']},
 'threat_actor': 'Unauthorized third party',
 'title': 'Houzz Data Breach',
 'type': 'Data Breach'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.