It’s only been three months since the Redbox collapse, but the company’s familiar red kiosks could become a security nightmare for the highest bidder.
At least one owner of a discontinued DVD and Blu-ray dispenser reports that he has discovered a way to retrieve the customer’s personal information from encrypted files on the machine. This file contained the preferences of multiple individuals. troll franchise. The database also contained sensitive data such as personal emails and home addresses.
above mastodonprogrammer Hoon Turing, self-proclaimed collector of strange thingsshe said she decrypted the encrypted files from the Redbox machine and matched the information she found with real people.
The files she obtained came from a Redbox machine operating in Morganton, North Carolina. The information she retrieved from the files included customers’ names, zip codes, and usage history. If you’re interested, they rented a copy giver and maze runner. I’m sure that person is grateful that he decided not to buy Disney movies. the lone ranger reboot.
Turing said. low pass She was even able to obtain some of the credit card information of some customers. Although it wasn’t the entire log, she noticed that “the first six and the last four” were still there. [digits] In addition to each credit card used, lower-level transaction details are also displayed. ”
It also didn’t require a lot of hacking know-how to crack the machine. The code Redbox used to program its machines is “the kind of code you get when you hire 20 new employees who technically know C#, but none of them understand C#.” [sic] “I have never written any software before,” Turing wrote about Mastodon.
Now, here’s the kicker. It’s clear Redbox’s parent company, Chicken Soup for the Soul, didn’t do a great job of wiping down the machine before selling it off like an old shoe at a garage sale. There are more than 24,000 kiosks, and some customers can buy in-store and take home. Suddenly, paying a few extra bucks for Netflix doesn’t seem so bad now.
We reached out to Chicken Soup for the Soul for comment.
