StoreHub’s Clarification on User Data Vulnerability
Kuala Lumpur, 16 June 2022 – In February 3, 2022, StoreHub was made aware of a user data vulnerability instance that had the potential to impact its users.
Upon being informed of the occurrence on an Amazon Web Services (AWS) Elasticsearch instance, StoreHub took immediate action to patch and rectify the vulnerability within 24 hours.
The decisive action helped ensure that no sensitive or private data were maliciously downloaded by any parties and the finding was confirmed through a thorough internal investigation of the incident.
The investigation also revealed that no sensitive financial data or passwords were contained in the vulnerability.
As an extra precautionary measure, StoreHub ensured that no tokens within the dataset could be used to login into a merchant’s account.
StoreHub understands the severity of the matter and the potential panic caused by this occurrence to our users.
We would like to reassure our users that we take the security of their data very seriously and as such, we will continually work to enhance our data security whilst addressing any and all possible concerns related to it.
Towards that end, StoreHub is working with an independent cybersecurity agency to verify and prevent future potential vulnerabilities.
The team will continue to work diligently and closely with its internal teams and external experts to ensure the full and thorough protection of StoreHub’s user data while also providing a comprehensive and integrated technology driven services.
For more information, please visit our website at https://www.storehub.com/my/.
-END-
Recent Comments