[ad_1]
Anonymous programmers, who were given access to and published by CityBee 2018 data, posted screenshots of the database tree on a forum Tuesday night. They could see the dbo.CreditCards folders, which could be seen as a link to the credit card details.
However, Kristijonas Kaikaris says the data could not have been stolen because CityBee payments are processed by Braintree, a PayPal certified company.
“The interpretations that that data is there are really wrong, as are the driver’s licenses. The consumer certificate numbers and expiration dates were stolen, we had no other information and the database could not be stolen from that database, ”K. Kaikaris told BNS on Wednesday.
“You don’t have to give up the cards, you don’t have to call the banks, you really don’t have to,” he emphasized.
According to the CityBee manager, the company discovered for the first time that the data was not stolen from the operating system, but a copy of the database made three years ago.
“The data found in the current system is perfectly protected by the latest systems. Now we have even forced the introduction of another layer of identification in each user’s applet, “said K. Kaikaris.
After receiving and publishing the data, the programmers contacted by BNS stated that CityBee’s data protection was extremely poor and that it had easy access to it.
But the director of the company says that stealing the data was not easy and that the hacker should not be believed.
“That information was not really put on the plate. He had tools, he had to break into what, by the way, he himself described on the forum. He said he did it easily, but it’s a crime, a robbery. It is possible that it even involves various criminal acts, not only theft, but also the disclosure of data ”, emphasized K. Kaikaris.
Speaking about the Consumer Alliance’s intentions to sue CityBee over the loss of data, Kaikaris said it was too early to talk about possible redress for consumers, but the company “really thinks about what can be done better.”
The CityBee customer data breach was announced Monday night. About 110 thousand people fell into the hands of programmers and were publicly announced. names, phone numbers, emails of users who have registered on the platform before February 22, 2018. email addresses, personal codes, passwords.
CityBee encourages its customers who registered in the company system before February 22, 2018 to change their passwords in both the CityBee system and other systems if the same or similar password was used.
CityBee operates in Lithuania, Latvia, Estonia and Poland. The fleet of automobiles managed by the company consists of more than 2,000. vehicles, the company has more than 750 thousand. registered customer base.
[ad_2]
