Lionsgate Breach Leaks Data of 37 Million Users

Lionsgate breach leaks data of 37 million users. The reason for the breach was blamed on Unprotected ElasticSearch instance.

Lionsgate Breach Leaks Data of 37 Million Users

Lionsgate Breach Leaks Data of 37 Million Users

One of the best video streaming platforms out there, Lionsgate Play has reportedly exposed sensitive data on millions of its users, cybernews cybersecurity researchers just found out.

The team of the website found that Lionsgate’s platform kept an unprotected ElasticSearch instance, which was containing 20GB of server logs with roughly 30 million entries. Much of the data dates back to May 2022, and this is including user IP addresses as well as information on user devices, operating systems, as well as web browsers. 

And while this is not exactly personally identifiable information, it, however, can still be used by hackers to conduct intrusions, the researchers stated.

The Official Statement of Cybernews Report

“It can be useful in targeted attacks, especially when combined with other leaked or publicly available information,” cybernews team in its report stated. And just by knowing the IP addresses, the attackers can simply deliver custom-built malicious payloads to the targets in question, they added.

But this is not the only data that was leaked through ElasticSearch. Data usages, such as content titles, IDs, and search queries, were also leaked in the breach. This data as you should know is usually utilized by analysts in tracking the platform’s and content’s performance. Researchers furthermore, discovered unidentified hashes with logged HTTP GET requests, which are user-made requests for data, and are stored on the server.

What the Hashes Are Used For

And while the researchers could not say what the hashes are utilized for, they did say that they contain over 156 characters, thus meaning that they were supposed to stay unchanged for a longer period of time.

“Hashes didn’t match any commonly used hashing algorithms. Since these hashes were included in the HTTP requests, we believe they could have been used as secrets for authentication, or just user IDs,” the researchers said.

Lionsgate when reached out to by researchers responded quickly by closing the open instance. An official statement by this time is however yet to be made.

Other Streaming Platforms to Suffer Breaches Recently

Streaming platforms are famous targets among cybercriminals. And just before Lionsgate Play, hackers managed to beach other streaming platforms such as Carbon TV, Plex, and START.



Please enter your comment!
Please enter your name here