In a recent discovery by cybersecurity researcher Jeremiah Fowler, a non-password-protected database containing over 240,000 records of US-based FinTech bill payment platform Willow Pays was exposed. The database, which lacked essential security measures like password protection and encryption, contained sensitive information such as user names, email addresses, credit limits, and internal billing details.
Willow Pays, a bill payment software company headquartered in Chicago, IL, offers a service that allows users to finance bills and other expenses over a four-week period. Customers upload their bills and personal information, which is then reviewed by Willow Pays to approve or deny the request before facilitating payments.
Fowler’s investigation, as reported by Website Planet, revealed that the exposed database contained 241,970 records. These records included a variety of sensitive information such as bills, mailing lists, account inconsistencies, repayment schedules, screenshots, settings, and snapshots. Among the data exposed were names, email addresses, credit limits, and other internal details. A single spreadsheet document within the database contained details of approximately 56,864 individuals, who could be active customers, prospects, or blocked accounts.
While the extent of any actual data compromise remains unclear, Fowler expressed concerns that the exposed information could potentially be exploited by malicious actors. This could involve using real billing data for phishing attacks to deceive users or gaining unauthorized access to other accounts using the exposed information.
Upon receiving a responsible disclosure notice from Fowler, Willow Pays promptly restricted public access to the exposed database. However, the owner or management of the database remains unknown, and it is unclear how long the database was exposed before the discovery or if any unauthorized parties accessed the information.
This incident underscores the growing threat of cyberattacks targeting financial institutions, with Verizon reporting that 95% of data breaches are financially motivated. In response to these threats, cybersecurity solutions like quantum-resistant authentication technology are being developed to protect banks and fintech companies from emerging risks.
To mitigate these risks, security experts recommend that financial software providers implement robust cybersecurity measures. These measures include encrypting sensitive data, conducting regular security audits, and adopting multi-factor authentication to enhance data protection and prevent unauthorized access.
As the threat of financial fraud online continues to evolve, it is essential for organizations to stay vigilant and proactive in safeguarding their data and systems. By implementing effective cybersecurity practices and staying informed about potential threats, financial institutions can better protect themselves and their customers from cyber risks.