American subscription-based movie ticketing service MoviePass has confirmed it suffered a data breach, comprised of millions of records…
Recently, news reports surfaced, claiming MoviePass experienced a massive data breach. Security researcher Mossab Hussein from the firm SpiderSilk discovered millions of records on an unencrypted database.
MoviePass Data Breach Confirmed by Company
The MoviePass data breach included numbers from its proprietary debit cards subscribers use to purchase tickets. Meanwhile, other exposed information included customers’ personal information, such as credit card account numbers, expiration dates, as well as billing information.
By the end of July 2018, the company lost approximately $40 million per month. On July 26th, the service ran out of money to put on MoviePass cards, according to the news report. The company suspended its operations thereafter.
A spokesperson for MoviePass released the following statement about the data breach:
“MoviePass recently discovered a security vulnerability that may have exposed subscriber records. After discovering the vulnerability, we immediately secured our systems to prevent further exposure and to mitigate the potential impact of this incident. MoviePass takes this incident seriously and is dedicated to protecting our subscribers’ information. We are working diligently to investigate the scope of this incident and its potential impact on our subscribers. Once we gain a full understanding of the incident, we will promptly notify any affected subscribers and the appropriate regulators or law enforcement.”