Vimeo confirmed hackers accessed databases through a third-party analytics vendor, exposing technical data, video titles and metadata, and some customer email addresses while stating video content, user login credentials, and payment card information were not taken. The company disabled Anodot integrations, notified law enforcement, and faces a ransom threat after ShinyHunters claimed to have obtained data from its Snowflake and BigQuery instances. #ShinyHunters #Vimeo
Keypoints
- Attackers accessed Vimeo data via the Anodot analytics platform.
- Exposed information includes technical data, video titles and metadata, and some customer emails.
- Vimeo says video content, user credentials, and payment card data were not compromised.
- ShinyHunters has claimed responsibility and is threatening to leak files unless a ransom is paid.
- Vimeo disabled Anodot credentials, removed the integration, and notified law enforcement while investigating.
Read More: https://www.securityweek.com/vimeo-confirms-user-and-customer-data-breach/