Whoa. Maybe all companies should add “check Pastebin” to their daily security to-do list. A series of three data dumps from Carbajal Realty, Inc. in Waco, Texas reveals names, e-mail addresses, rental addresses, and payment info for approximately 625 renters. Here’s a redacted entry:
payment_time=2010-07-07 05:57:04
rental_street=xxxx S. 10th Street
amount=425.00
phone=214-998-xxxx
contact_name=xxxxx_xxxx
[email protected]
payments_id=479
The hacker, “Kahuna,” had posted a notice of the impending dump earlier today:
Another Dump Coming, Pulling Database Now.
Tick Tock Tick TockIf You Need A Real Estate Company, Dont Choose This One
#SecureYourSite
(Typo corrected in spelling of firm’s name)