The American subscription-based movie ticketing service MoviePass has leaked the payment card details of tens of thousands of customers via an unsecured database. The leaky server was discovered by researchers with SpiderSilk and contained 161 million records, over 58,000 of which mentioned payment card data.
The exposed data included MoviePass debit card numbers together with their expiry dates as well as the personal credit card numbers and matching expiry dates of certain customers. Some records contained masked card numbers of which only the last four digits were visible. The researchers informed MoviePass of the leaky database last week, but it was only taken offline on Tuesday.
Read more: MoviePass exposed thousands of unencrypted customer card numbers