Bangladeshi online market place Travela.xyz for homestays and experiences, suffered a major data breach on June 9, 2024. The leaked information, found on a dark web hacking forum, exposed the personal data of the company’s hosts.
The leaked data, which includes user information such as Host ID, First Name, Last Name, Phone Number, Email Address, Birthdate Refer Code, Total Booking, Average Response Time, Status, OS Platform, bkash MSISDN (Mobile Number), Image, and Host Status.
By infosecbulletin
/ Monday , December 23 2024
Splunk, a unified security and observability platform turn its focuses on Bangladeshi market. On Monday (23 December) Splunk's local partner...
Read More
By infosecbulletin
/ Sunday , December 22 2024
A major security flaw in Craft CMS, a popular PHP content management system, has been found, enabling unauthenticated remote code...
Read More
By infosecbulletin
/ Sunday , December 22 2024
Mastercard has completed its acquisition of Recorded Future, an AI-based threat intelligence provider. Mastercard has acquired the company for $2.65...
Read More
By infosecbulletin
/ Saturday , December 21 2024
CISA has released eight advisories on vulnerabilities in Industrial Control Systems (ICS). These vulnerabilities affect essential software and hardware in...
Read More
By infosecbulletin
/ Friday , December 20 2024
Bank Rakyat Indonesia (BRI), the largest state bank by assets, has assured customers that their data and funds are secure...
Read More
By infosecbulletin
/ Friday , December 20 2024
Cybersecurity researcher Jeremiah Fowler reported to Website Planet that he found a non-password-protected 1.2 TB dataset containing over 3 million...
Read More
By infosecbulletin
/ Friday , December 20 2024
Sophos has fixed three separate security vulnerabilities in Sophos Firewall. The vulnerabilities CVE-2024-12727, CVE-2024-12728, and CVE-2024-12729 present major risks, such...
Read More
By infosecbulletin
/ Thursday , December 19 2024
A time-demanding workshop on "Cybersecurity Awareness and Needs Analysis" was held on Thursday (December 19) at Bangladesh Bank Training Academy...
Read More
By infosecbulletin
/ Thursday , December 19 2024
Kaspersky's Global Emergency Response Team (GERT) found that attackers are exploiting a patched SQL injection vulnerability (CVE-2023-48788) in Fortinet FortiClient...
Read More
By infosecbulletin
/ Wednesday , December 18 2024
The US government is considering banning a well-known brand of Chinese-made home internet routers TP-Link due to concerns that they...
Read More
The Travela.xyz data breach serves as a powerful reminder that even emerging companies are susceptible to the ever-present dangers of the digital world.
BCSI reported, As the investigation unfolds, it becomes evident that it is crucial for both companies and users to acknowledge these risks and proactively shield their personal information. This incident serves as a wake-up call, emphasizing the dire need for steadfast cybersecurity measures. Companies must wholeheartedly prioritize the security of their users’ information by implementing rigorous protective measures, conducting regular security audits, and remaining perpetually vigilant in the face of emerging threats.
Travela was founded in 2020 to make tourism more accessible and beneficial for local economies. it’s vision is to create a world where travel is simple, safe, and enjoyable.
Travela was incorporated as a Private Limited Company at Dhanmondi in Dhaka, Bangladesh in 2020. One from travela said, they are now working Dhaka based.
As travela worked like bnb, its app must contain sensitive information. So, if the bad actor claim is legit, victimas may suffer seriously as bad actor may use or modify the info for illegal purposes. Personal information like phone numbers, email addresses, and birthdates can be used for identity theft, phishing attacks, and other harmful activities. The leak of financial details like the bkash MSISDN increases the risk, potentially resulting in financial fraud.
In recent times, hacker target many Bangladeshi gov.t and private institutions.