Brinztech Alert: The Database of Gift On Card is on Sale

Dark Web News Analysis

A hacker forum is advertising the sale of a database allegedly belonging to GiftOnCard, a multi-brand gift card platform operating across Eastern Europe. The compromised dataset is massive, containing over 7.6 million records. The data includes a wide range of sensitive information, such as customer names, dates of birth, contact details, physical addresses, marital status, and a full history of user-card registrations and transactions. The presence of user account credentials (usernames and passwords) poses a particularly high risk.

Key Cybersecurity Insights

• Significant Exposure of High-Value Data: The breach involves a combination of PII and financial transaction data, making the information highly valuable for cybercriminals. The exposure of transaction records can be used to craft highly convincing and personalized phishing campaigns, while the personal data can be leveraged for widespread identity theft and financial fraud.
• Compromised Credentials and Account Takeover: The leaked usernames and passwords, even if they are hashed, are a critical threat. The data can be used in credential-stuffing attacks, where criminals test the stolen credentials on other platforms. This can lead to an Account Takeover (ATO), which provides the attacker with a foothold to steal more data, make fraudulent purchases, or lock users out of their accounts.
• Severe GDPR and Legal Implications: GiftOnCard, as a company operating in Serbia, is subject to a strict national data protection law that is largely aligned with the EU’s General Data Protection Regulation (GDPR). A data breach of this magnitude could result in significant fines, potentially reaching up to €20 million or 4% of the company’s global annual turnover. The potential legal repercussions and a loss of customer trust are also major concerns.
• Risk to a Broad Ecosystem: GiftOnCard’s business model involves a large network of partners across Eastern Europe. The exposure of this customer data puts not only GiftOnCard’s users at risk but also the customers of all the brands that partner with the platform, creating a potential supply chain risk for a wide range of businesses.

Critical Mitigation Strategies

• Immediate Password Reset and Enhanced Monitoring: GiftOnCard must immediately force a password reset for all user accounts and implement a stronger password policy. They should also enhance monitoring for suspicious account activity and unauthorized login attempts to identify any potential account takeovers.
• Comprehensive Customer Awareness Campaign: The company needs to issue a clear and transparent public notification to all affected customers, advising them to change their passwords and to be on high alert for phishing emails, text messages, and phone calls. The campaign should provide specific examples of what scams might look like.
• Enhanced Fraud Detection: To prevent financial losses, GiftOnCard and its partner brands must strengthen their fraud detection systems. This includes analyzing transaction patterns for any anomalies, such as an increase in small, frequent purchases or transactions from unusual geographical locations.
• Incident Response and Forensic Analysis: A thorough forensic investigation is essential to determine the root cause of the breach and to identify the vulnerabilities that were exploited. The company must also have a robust incident response plan in place to contain the breach, eradicate the threat, and prevent future attacks.

Secure Your Organization with Brinztech

As a cybersecurity provider, we can protect your business from the threats discussed here. Contact us to learn more about our services.

Questions or Feedback?

For expert advice, use our ‘Ask an Analyst’ feature. For general inquiries or to report this post, please email us: contact@brinztech.com