Threat actor Gumball claimed responsibility for a breach involving over 2.5 million records stolen from Weguest, a Spanish property management company. The breach was caused by a misconfigured third-party API, exposing sensitive data related to owners, employees, and bookings. #Gumball #Weguest #APImisconfiguration
Keypoints
- The breach involved the exfiltration of 2.5 million records from Weguest.
- Gumball has publicly claimed responsibility for the data breach.
- The cause of the breach was a misconfigured third-party API used by Weguest.
- Exposed data included information about owners, employees, service providers, bookings, and internal emails.
- The incident highlights risks associated with API misconfigurations in property management platforms.
DarkWebInformer.com Providing intel from some of the darkest places on the Dark Web & Clearnet. Breaches, Darknet Markets, Ransomware, Threat Alerts, & more!Read More: https://darkwebinformer.com/alleged-breach-of-weguest-2-5m-records-exposed-via-api-misconfiguration/