A threat actor is selling administrative access to the “Come to Paris” travel website, which could expose sensitive customer data. This incident underscores the importance of strong security practices for companies handling personal and travel information. #ComeToParis #CustomerDataLeak
Keypoints
- A threat actor is selling access to the backend of the “Come to Paris” travel website.
- The platform manages bookings for Parisian attractions and tourist experiences.
- The compromised data includes over 400,000 customer records containing sensitive personal information.
- The potential exposure includes full names, emails, phone numbers, addresses, and other personal details.
- This breach highlights the need for robust cybersecurity measures for data-centric companies.