Video streaming platform Lionsgate Play uncovered delicate knowledge on thousands and thousands of its customers, cybersecurity researchers from Cybernews discovered.
The web site’s workforce discovered (opens in new tab) Lionsgate’s platform saved an unprotected ElasticSearch occasion, containing 20GB of server logs with roughly 30 million entries. A few of the knowledge dates again to Could 2022, and included person IP addresses in addition to data on person units, working techniques, and net browsers.
Whereas this isn’t precisely personally identifiable data (opens in new tab), it may possibly nonetheless be utilized by menace actors to conduct intrusions, the researchers stated.
Attainable authentication secrets and techniques
“It may be helpful in focused assaults, particularly when mixed with different leaked or publicly obtainable data,” Cybernews’ workforce stated in its report.
By understanding the IP addresses, the attackers can ship custom-built malicious payloads to the targets, they added.
However this isn’t the one knowledge that was leaked by way of ElasticSearch. Utilization knowledge, similar to content material titles, IDs, and search queries, have been additionally leaked. This knowledge is often utilized by analysts to trace the platform’s and content material’s efficiency. Moreover, researchers found unidentified hashes with logged HTTP GET requests, that are user-made requests for knowledge, saved on the server.
Whereas the researchers couldn’t say what the hashes are used for, they did say they include greater than 156 characters, which means they have been supposed to remain unchanged for lengthy.
“Hashes didn’t match any generally used hashing algorithms. Since these hashes have been included within the HTTP requests, we imagine they might have been used as secrets and techniques for authentication, or simply person IDs,” stated researchers.
When reached out to by the researchers, Lionsgate responded by closing the open occasion. Nonetheless, an official assertion is but to be made.
Streaming platforms are fashionable targets amongst cybercriminals. Earlier than Lionsgate Play, hackers managed to breach Plex, START, and Carbon TV.