Babysitting-booking app Sitter, exposed the personal data of 93,000 account holders.
2GB MongoDB database was compromised , which contained phone numbers, addresses, transaction details, phone book contacts, partial credit card numbers, and encrypted account passwords.
Other information included in-app chat and notification history, plus details of which users needed a babysitter at what time and at which address.
TPRM report: https://scoringcyber.rankiteo.com/company/sitter-inc
"id": "sit1791122",
"linkid": "sitter-inc",
"type": "Data Leak",
"date": "08/2018",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 93000,
'industry': 'Babysitting-booking',
'name': 'Sitter',
'type': 'Company'}],
'data_breach': {'data_encryption': 'Partial',
'number_of_records_exposed': 93000,
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal',
'Transaction',
'Chat and Notification History',
'Scheduling']},
'description': 'Babysitting-booking app Sitter exposed the personal data of '
'93,000 account holders. A 2GB MongoDB database was '
'compromised, which contained phone numbers, addresses, '
'transaction details, phone book contacts, partial credit card '
'numbers, and encrypted account passwords. Other information '
'included in-app chat and notification history, plus details '
'of which users needed a babysitter at what time and at which '
'address.',
'impact': {'data_compromised': ['phone numbers',
'addresses',
'transaction details',
'phone book contacts',
'partial credit card numbers',
'encrypted account passwords',
'in-app chat and notification history',
'details of which users needed a babysitter '
'at what time and at which address'],
'systems_affected': ['MongoDB database']},
'title': 'Data Breach at Sitter App',
'type': 'Data Breach'}