Sitter Inc

Sitter Inc

Babysitting-booking app Sitter, exposed the personal data of 93,000 account holders.

2GB MongoDB database was compromised , which contained phone numbers, addresses, transaction details, phone book contacts, partial credit card numbers, and encrypted account passwords.

Other information included in-app chat and notification history, plus details of which users needed a babysitter at what time and at which address.

Source: https://nakedsecurity.sophos.com/2018/08/23/babysitting-app-suffers-temporary-data-breach-of-93000-users/

TPRM report: https://scoringcyber.rankiteo.com/company/sitter-inc

"id": "sit1791122",
"linkid": "sitter-inc",
"type": "Data Leak",
"date": "08/2018",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 93000,
                        'industry': 'Babysitting-booking',
                        'name': 'Sitter',
                        'type': 'Company'}],
 'data_breach': {'data_encryption': 'Partial',
                 'number_of_records_exposed': 93000,
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal',
                                              'Transaction',
                                              'Chat and Notification History',
                                              'Scheduling']},
 'description': 'Babysitting-booking app Sitter exposed the personal data of '
                '93,000 account holders. A 2GB MongoDB database was '
                'compromised, which contained phone numbers, addresses, '
                'transaction details, phone book contacts, partial credit card '
                'numbers, and encrypted account passwords. Other information '
                'included in-app chat and notification history, plus details '
                'of which users needed a babysitter at what time and at which '
                'address.',
 'impact': {'data_compromised': ['phone numbers',
                                 'addresses',
                                 'transaction details',
                                 'phone book contacts',
                                 'partial credit card numbers',
                                 'encrypted account passwords',
                                 'in-app chat and notification history',
                                 'details of which users needed a babysitter '
                                 'at what time and at which address'],
            'systems_affected': ['MongoDB database']},
 'title': 'Data Breach at Sitter App',
 'type': 'Data Breach'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.