Tuesday , January 21 2025
data

Bangladeshi online marketplace faced massive data leak

Bangladeshi online market place Travela.xyz for homestays and experiences, suffered a major data breach on June 9, 2024. The leaked information, found on a dark web hacking forum, exposed the personal data of the company’s hosts.

The leaked data, which includes user information such as Host ID, First Name, Last Name, Phone Number, Email Address, Birthdate Refer Code, Total Booking, Average Response Time, Status, OS Platform, bkash MSISDN (Mobile Number), Image, and Host Status.

Multiple Azure DevOps Vulns Allow To Inject CRLF Queries & Rebind DNS

Security researchers have found several vulnerabilities in Azure DevOps that could enable attackers to inject CRLF queries and carry out...
Read More
Multiple Azure DevOps Vulns Allow To Inject CRLF Queries & Rebind DNS

Intel holds 22 employees from one Bangladeshi University

Intel Corporation is a leading semiconductor chip manufacturer, employing at least 22 graduates from the Department of Applied Chemistry and...
Read More
Intel holds 22 employees from one Bangladeshi University

VPN Surge 1500% in USA after TikTok Shut Down

vpnMentor’s Research Team is monitoring the potential TikTok ban in the U.S., driven by national security and data privacy issues....
Read More
VPN Surge 1500% in USA after TikTok Shut Down

MITRE Launches D3FEND 1.0; The Milestone for Cybersecurity Ontology

MITRE launched D3FENDTM 1.0, a cybersecurity framework that provides a vocabulary and understanding of the cyber domain. D3FEND 1.0, funded...
Read More
MITRE Launches D3FEND 1.0; The Milestone for Cybersecurity Ontology

AWS Patches Multiple Vulns in WorkSpaces, AppStream 2.0

Amazon Web Services (AWS) has recently fixed two major security vulnerabilities in its cloud services: Amazon WorkSpaces, Amazon AppStream 2.0,...
Read More
AWS Patches Multiple Vulns in WorkSpaces, AppStream 2.0

Malware Trends Review 2024: Ever Recorded Cyber Threats

Last year saw a significant rise in cyber threats, with malware becoming more advanced and attack strategies more sophisticated. A...
Read More
Malware Trends Review 2024: Ever Recorded Cyber Threats

Botnet Exploits 13,000 MikroTik Devices Abusing Misconfigured DNS

A recent Infoblox Threat Intel report reveals a sophisticated botnet that exploits DNS misconfigurations to spread malware widely. This botnet,...
Read More
Botnet Exploits 13,000 MikroTik Devices Abusing Misconfigured DNS

CVE-2024-9042
Code Execution Vulnerability Found in Kubernetes Windows Nodes

A new security flaw traced, CVE-2024-9042, poses a serious risk to Kubernetes clusters with Windows worker nodes. It has a...
Read More
CVE-2024-9042  Code Execution Vulnerability Found in Kubernetes Windows Nodes

Hacker leaked 15k config files and VPN passwords of FortiGate firewall device

The hacking group "Belsen Group" has posted over 15,000 unique FortiGate firewall configurations online. The data dump, reportedly obtained by exploiting...
Read More
Hacker leaked 15k config files and VPN passwords of FortiGate firewall device

Registration open for 1st Agile Cyber Drill 2025

Registration open for "1st Agile Cyber Drill-2025" scheduled for February 26, 2025 online with an awards ceremony for 9 March...
Read More
Registration open for 1st Agile Cyber Drill 2025

The Travela.xyz data breach serves as a powerful reminder that even emerging companies are susceptible to the ever-present dangers of the digital world.

BCSI reported, As the investigation unfolds, it becomes evident that it is crucial for both companies and users to acknowledge these risks and proactively shield their personal information. This incident serves as a wake-up call, emphasizing the dire need for steadfast cybersecurity measures. Companies must wholeheartedly prioritize the security of their users’ information by implementing rigorous protective measures, conducting regular security audits, and remaining perpetually vigilant in the face of emerging threats.

Travela was founded in 2020 to make tourism more accessible and beneficial for local economies. it’s vision is to create a world where travel is simple, safe, and enjoyable.

Travela was incorporated as a Private Limited Company at Dhanmondi in Dhaka, Bangladesh in 2020. One from travela said, they are now working Dhaka based.

As travela worked like bnb, its app must contain sensitive information. So, if the bad actor claim is legit, victimas may suffer seriously as bad actor may use or modify the info for illegal purposes. Personal information like phone numbers, email addresses, and birthdates can be used for identity theft, phishing attacks, and other harmful activities. The leak of financial details like the bkash MSISDN increases the risk, potentially resulting in financial fraud.

In recent times, hacker target many Bangladeshi gov.t and private institutions.

Check Also

82 GB

Hacker reportedly leak Indonesia Gov.t 82 GB data

Hackers claimed to have accessed and stolen 82 GB of sensitive data from Indonesia’s Regional …

Leave a Reply

Your email address will not be published. Required fields are marked *