A researcher at VpnMentor discovered a database housing millions of users’ information had been exposed for quite some time. TrueDialog, an SMS texting solutions company based in Texas, was responsible for the breach. With more than five billion subscribers around the world, the TrueDialog breach has affected many people, including the company’s employees. The breach left text messages, usernames, passwords, and other data from users or customers exposed.
“We contacted the company. We disclosed our findings and offered our expertise in helping them close the data leak and ensure nobody was exposed to risk,” the researchers said. “The database has since been closed, but TrueDialog never replied to us.”
USA TODAY reached out to TrueDialog for comments about the leak.
What Was Affected By The Leak
- Account Logins
This information was easily accessible once inside the database, researchers said. They were able to pull email information as well as usernames and passwords from an obvious point within the database.
- Text Messages
They were able to view messages sent from TrueDialog, as well as conversations within the platform. The information that they were able to access included full names of account holders and users, phone numbers, dates and times messages were sent or received, and other personal account details.
- Technical Logs
The technical logs show how the database was working. Which meant whoever could gain access to this information would be able to see all the traffic within the site. This could, on its own, have a significant impact on the company’s security.
TrueDialog must be aware of the data breach as it not only had an impact on the company, but their customers and employees as well. A database of such a vast volume can rarely be exposed to this type of threat. The information exposed could be a significant asset to scammers and can lead to crimes like identity theft, blackmail, or fraud.