Xcitium

Comodo Cybersecurity suffered from a data breach incident that exposed more than half of all Comodo Forums users' account data has been stolen and is currently being exchanged online.

Users were notified by Comodo via a security notification that a hacker might have accessed the forums database.

The Comodo Forums may have had a data breach as a result of an attacker taking advantage of a vBulletin security hole, the company stated in its announcement.

Username, name, email address, the last IP address used to access the forums, and, in very rare circumstances, possibly some social media usernames, are among the details found in user profiles on the forums.

Source: https://www.bleepingcomputer.com/news/security/comodo-forums-breached-data-of-over-170-000-users-up-for-grabs/

TPRM report: https://scoringcyber.rankiteo.com/company/xcitium

"id": "xci65015423",
"linkid": "xcitium",
"type": "Data Leak",
"date": "10/2019",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'customers_affected': 'More than half of all Comodo '
                                              'Forums users',
                        'industry': 'Cybersecurity',
                        'name': 'Comodo Cybersecurity',
                        'type': 'Organization'}],
 'attack_vector': 'Exploitation of vBulletin security vulnerability',
 'customer_advisories': 'Users were notified by Comodo via a security '
                        'notification',
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': 'More than half of all Comodo '
                                              'Forums users',
                 'personally_identifiable_information': ['Username',
                                                         'Name',
                                                         'Email address',
                                                         'Last IP address used '
                                                         'to access the forums',
                                                         'Social media '
                                                         'usernames (in rare '
                                                         'cases)'],
                 'type_of_data_compromised': ['Username',
                                              'Name',
                                              'Email address',
                                              'Last IP address used to access '
                                              'the forums',
                                              'Social media usernames (in rare '
                                              'cases)']},
 'description': 'Comodo Cybersecurity suffered from a data breach incident '
                "that exposed more than half of all Comodo Forums users' "
                'account data has been stolen and is currently being exchanged '
                'online.',
 'impact': {'data_compromised': ['Username',
                                 'Name',
                                 'Email address',
                                 'Last IP address used to access the forums',
                                 'Social media usernames (in rare cases)'],
            'systems_affected': 'Comodo Forums database'},
 'initial_access_broker': {'entry_point': 'vBulletin security hole'},
 'motivation': 'Unauthorized access to user data',
 'post_incident_analysis': {'root_causes': 'vBulletin security hole'},
 'response': {'communication_strategy': 'Users were notified by Comodo via a '
                                        'security notification'},
 'title': 'Comodo Cybersecurity Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'vBulletin security hole'}