Sega narrowly avoids massive data violations on its European servers

It seems that Sega had a bit of an oopsy-doopsy who was waiting to happen. Fortunately for us, this event never took place. Their supposedly secure information was stored in an Amazon Web Services compartment accessible to the public. Not intentionally, notice, but it's still happening. With some invisible flaws in Sega's cloud security, all this information could have been exposed. Technical details Here — it is only the version in clear language.

The areas concerned included the destination pages of several franchises published by SEGA. These being Sonic The Hedgehog, Total War and Barnett. And as if it were not enough, the vulnerability also affected SEGA's official website. The security breach has been discovered and crossed by a team of researchers before malicious actors can venture there.

In addition to this, a poorly stored Mailchimp API key could have given the pirates access to a ton of broadcast lists, related IP addresses and passwords.

For now, there is no evidence that external hackers have falsified these data. So, breathe quietly. Imagine the kind of damage that could have been caused if official sources of appearance became suddenly hostile to users. With the recognition of the Sonic The Hedgehog brand, associated with its younger user base, things could have become uncontrollable quickly. And even if you never visit these websites very often, the violation of e-mail could have sent you malicious actors directly. Fortunately, companies hire computer hackers for a reason, and they are good in what they do.

Apparently, vulnerabilities of this type are surprisingly common. Groups like Sennheiser and even the Ghana government had to solve the same problem. Although the impact could have been massive, repair efforts can follow a well-traced path. Fixes have since been deployed on the SEGA side. You will not have to worry about this vulnerability causing sorrow sit times.