Viking Line has allegedly been breached after an unidentified actor exploited a Local File Inclusion vulnerability in Solr to obtain Tomcat credentials and access the master database. The incident reportedly exposed a full traveler database and a secondary NetAxept payments database containing names, contact details, vehicle registrations, transaction data, and internal account records. #VikingLine #Solr
Keypoints
- An unidentified threat actor allegedly exploited an LFI vulnerability in Apache Solr.
- The attacker reportedly retrieved Tomcat credentials and pivoted to the master database.
- A complete database of traveler personal information is alleged to have been exfiltrated.
- A secondary payments database via the NetAxept API, including transaction amounts and comments, was also reportedly compromised.
- Internal system accounts—emails, roles, and password hashes—were allegedly exposed.
Read More: https://dailydarkweb.net/viking-line-suffers-data-breach-exposing-customer-and-internal-data/