Technology
Hackers target Denmark's Tivoli park, guests info stolen
Copenhagen, Aug 17
The Copenhagen-based Tivoli, one of the oldest and most popular amusement parks in Europe, has now joined the unfortunate online "rogues gallery" of major Danish companies whose customer data has been hacked from their websites.
Details about the extent of the early August hack into the website of Denmark's premier tourist destination were made public on Saturday.
Hackers targeted My Tivoli, a site where guests can login and access Tivoli products and annual cards. They can use My Tivoli to access the theme park and get an overview of past purchases, Xinhua news agency reported.
Tivoli, the spiritual home of over 4 million thrill-seeking visitors, admitted that this popular website had been compromised when up to a thousand guests had their personal information -- names, addresses, phone numbers, e-mail addresses, date of birth and information about guests' previous purchases at Tivoli, even credit card information -- stolen.
Jonas Buhl Gregersen, Tivoli's Director of IT and Business Development, deemed the hack "intelligent" rather than a classic "brute force attack".
During this attack on My Tivoli, Gregersen said that there were a maximum of three logins with the same email address and a maximum of two with the wrong password.
In contrast, a brute force hack would have tried to log in with the same email address continuously for a prolonged period.
Gregersen said the hack was discovered quickly by vigilant website administrators who noticed an unusual spike in customer logins.
The spike occurred due to innocent guests logging in to their account, along with hackers, after they received an automatic email from Tivoli informing them that their My Tivoli profile had been logged onto from a different device.
Despite the breach, Gregersen could provide no good explanation as to the motives of the attackers, only suggesting that hackers may have have been testing the systems security, "curious" about what could be done.
No similar incidents had ever happened on the My Tivoli website before this.
Immediately following the discovery of the hack, all affected customers were both informed and assured that no credit cards were used to make purchases. The site was now secure.
The incident was reported to both the police and the Danish Data Inspectorate.
Details about the extent of the early August hack into the website of Denmark's premier tourist destination were made public on Saturday.
Hackers targeted My Tivoli, a site where guests can login and access Tivoli products and annual cards. They can use My Tivoli to access the theme park and get an overview of past purchases, Xinhua news agency reported.
Tivoli, the spiritual home of over 4 million thrill-seeking visitors, admitted that this popular website had been compromised when up to a thousand guests had their personal information -- names, addresses, phone numbers, e-mail addresses, date of birth and information about guests' previous purchases at Tivoli, even credit card information -- stolen.
Jonas Buhl Gregersen, Tivoli's Director of IT and Business Development, deemed the hack "intelligent" rather than a classic "brute force attack".
During this attack on My Tivoli, Gregersen said that there were a maximum of three logins with the same email address and a maximum of two with the wrong password.
In contrast, a brute force hack would have tried to log in with the same email address continuously for a prolonged period.
Gregersen said the hack was discovered quickly by vigilant website administrators who noticed an unusual spike in customer logins.
The spike occurred due to innocent guests logging in to their account, along with hackers, after they received an automatic email from Tivoli informing them that their My Tivoli profile had been logged onto from a different device.
Despite the breach, Gregersen could provide no good explanation as to the motives of the attackers, only suggesting that hackers may have have been testing the systems security, "curious" about what could be done.
No similar incidents had ever happened on the My Tivoli website before this.
Immediately following the discovery of the hack, all affected customers were both informed and assured that no credit cards were used to make purchases. The site was now secure.
The incident was reported to both the police and the Danish Data Inspectorate.
1 hour ago
Delhi Committee of Chicago Sister Cities international, ComEd and Navy Pier host Annual “Global Connections: Holi” celebration
1 hour ago
New Citizens Will Be Able to Seamlessly Request Social Security Updates
2 hours ago
EAM Jaishankar says talks with Ukrainian FM focused on conflict with Russia
2 hours ago
Bangladeshi teen in ‘mental crisis’ shot dead by New York police
2 hours ago
Over 1.1 mn people in Gaza facing food insecurity: UN
2 hours ago
Palestinian death toll in Gaza Strip rises to 32,552: Ministry
2 hours ago
Kangana Ranaut holds roadshow in Mandi, responds to Supriya Shrinate’s ‘bhao’ jibe
2 hours ago
CPI tries to revive itself by launching ex-IPS officer in UP’s Faizabad
2 hours ago
INDIA bloc's seat-sharing formula for Bihar announced
2 hours ago
Royal scion Yaduveer Wadiyar’s candidature puts Congress on the backfoot
2 hours ago
Aged Kerala parents still wait for son who left for Australia seven years ago
2 hours ago
ED to approach Bengal court for permission to question Sheikh Shahjahan
2 hours ago
Prez Murmu, J&K L-G express grief over loss of lives in highway accident