2.9M Users data leaked by a fairy tale app called FarFaria

Users data leaked by a fairy tale app called FarFaria


Almost every day the privacy breach and data leak news coming from all around the world. Cybersecurity is the most important thing in these cases to be reminded of. Developers now should make the websites and apps very packed with tight security soo that no hacker can bypass and break that threshold to get the data. In this domain, Far Faria is a fairy tale online app that offers fairy tales for kids is found to be data leaks of 2.9 million users from their unsecured databases.

Found by Bob Diachenko, the head of safety research at Comparitech, the information was available to one and all on a misconfigured MongoDB data set. The information uncovered included email addresses, confirmation tokens, sign-in data, and online media data.

Diachenko takes note that he found the uncovered information base on Aug. 9 and attempted to contact the organization yet got no reaction. FarFaria is an investment-sponsored organization, having raised $3.3 million from Inventus Capital Partners, as per Crunchbase.

“There is an unimaginable measure of digital danger implied with the present more youthful age, as youngsters are progressively utilizing the web for their schooling and exercises,” Robert Prigge, CEO of financed personality confirmation organization Jumio Corp. told SiliconANGLE. “With 2.9 million FarFaria client records uncovered, it’s logical the data has as of now been spilled on the dim web, putting kids in more serious peril of being exploited online from a lot more youthful age than past ages.”

Prigge proceeded to clarify that while the passwords were scrambled, fraudsters can undoubtedly translate encoded passwords. In doing as such, they can “influence bots and accreditation stuffing trying to get to other web-based records, for example, school stages, web-based media accounts, learning applications and that’s just the beginning.”

Anurag Kahol, boss innovation official and fellow benefactor of absolute cloud security firm Bitglass Inc., noticed that this is one more model where a gigantic measure of actually recognizable data has been allowed to be uncovered on the web with no validation controls set up.

“Children are particularly at risk, as their exposed data can be easily stolen by threat actors and leveraged to commit identity theft or conduct highly targeted phishing schemes,” Kahol said. “When creating accounts for their children, parents should be able to trust that their data will be protected, which can only be done when businesses take a proactive approach to security.

Leave a Comment