In an era of ubiquitous cyber threats, even game companies have to pay careful attention to system security. However, it was discovered recently that SEGA had misconfigured the server, which caused a large number of users’ personal data to be leaked.
According to a report published by the network security company VPN Overview, SEGA’s AWS S3 server in Europe is set incorrectly, allowing the outside world to upload files to a large number of domains under SEGA, including game websites and company websites owned by SEGA. In addition, You can also access the email list, and the number of affected users reached 250,000.
The report stated that the email list is not encrypted and can be accessed directly. If hackers deliberately destroy, they can even use this loophole to spread ransomware through email and cloud systems. The consequences can be quite serious. However, the current problem has been fixed, and the above situation has not yet occurred. In addition to SEGA, other companies and even government agencies also have similar setting problems from time to time, which really cannot be ignored.
source:VPN Overview
unwire.hk Mewe page: https://mewe.com/p/unwirehk
