cyber Breach

IDVerse - An OCR Labs Company

Jul 9, 2023 1 min read
IDVerse - An OCR Labs Company

A setup error that exposed private data was found by the Cybernews research team in the OCR Labs system.

Defence Bank, Bloom Money, Admiral Money, MA Money, and Reed were all impacted by the data leak.

Threat actors could perhaps compromise the backend infrastructure of banks and, as a result, the infrastructure of their customers using disclosed data.

The threat to businesses and their customers is significant since financial services are the primary target of cybercriminals.

OCR Labs corrected the problem after being contacted by Cybernews.

Source: https://securityaffairs.com/144514/data-breach/ocr-labs-data-leak.html

TPRM report: https://scoringcyber.rankiteo.com/company/ocrlabs

"id": "idv105729523",
"linkid": "ocrlabs",
"type": "Data Leak",
"date": "04/2023",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Financial Services',
                        'name': 'Defence Bank',
                        'type': 'Bank'},
                       {'industry': 'Financial Services',
                        'name': 'Bloom Money',
                        'type': 'Bank'},
                       {'industry': 'Financial Services',
                        'name': 'Admiral Money',
                        'type': 'Bank'},
                       {'industry': 'Financial Services',
                        'name': 'MA Money',
                        'type': 'Bank'},
                       {'industry': 'Financial Services',
                        'name': 'Reed',
                        'type': 'Bank'}],
 'attack_vector': 'Setup Error',
 'data_breach': {'type_of_data_compromised': 'Private Data'},
 'description': 'A setup error that exposed private data was found by the '
                'Cybernews research team in the OCR Labs system. Defence Bank, '
                'Bloom Money, Admiral Money, MA Money, and Reed were all '
                'impacted by the data leak. Threat actors could perhaps '
                'compromise the backend infrastructure of banks and, as a '
                'result, the infrastructure of their customers using disclosed '
                'data. The threat to businesses and their customers is '
                'significant since financial services are the primary target '
                'of cybercriminals. OCR Labs corrected the problem after being '
                'contacted by Cybernews.',
 'impact': {'data_compromised': 'Private Data',
            'systems_affected': 'Backend Infrastructure'},
 'motivation': 'Financial Gain',
 'references': [{'source': 'Cybernews'}],
 'response': {'remediation_measures': 'OCR Labs corrected the problem'},
 'threat_actor': 'Unknown',
 'title': 'Data Leak in OCR Labs System',
 'type': 'Data Leak',
 'vulnerability_exploited': 'Exposed Private Data'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.