CATEGORIES
home News

Massive MoviePass Database Flaw Exposes Credit Card Info On Thousands Of Customers

by Shane McGlaunWednesday, August 21, 2019, 12:00 PM EDT

MoviePass members have reason to be concerned with the service. A security researcher from SpiderSilk named Mossab Hussein has announced that he found a major flaw in MoviePass servers. The flaw exposed a database that contained 161 million records and it is still growing in real-time. The researcher says the many of the messages in the database were routine computer-generated logging messages.

moviepass cc

However, many of the entries included sensitive user information like MoviePass customer card numbers. MoviePass customer cards are like debit cards and are issued by MasterCardTechCrunch reports that it reviewed 1,000 entries from that log and a bit over half of them contained MoviePass customer card numbers.

Information contained in the messages included the MoviePass debit card number, expiration date, card balance, and when the card was activated. The database contained more than 58,000 records containing card data. To make matters worse, among the data in the database was customer personal credit card numbers and the expiration date, along with data on billing information, names, and postal addresses. 

Some of the entries in the database did contain credit card numbers that had been masked except for the last four digits. The logs in the file also included email addresses and failed passwords from users attempting to log into their accounts. None of the data in the database was encrypted. MoviePass CEO Mitch Lowe was contacted via email by the security researcher to tell him about the breach, but Lowe never responded. The database remained up and visible until yesterday.

This isn't the first time that MoviePass users were concerned with privacy; MoviePass promised that it wouldn't monetize users' location data.

Tags:  data breach, Privacy, moviepass
SM

Shane McGlaun

Shane has been into tech since his dad brought home a Pong game when he was a toddler. A passion for gaming led to a passion for PC tech and hardware. That passion was eventually turned into a career writing about cool gadgets, computers, and automotive technology for some of the biggest publications online and in print. Shane also has a passion for the outdoors and when not writing about tech can be found hiking the trails of Colorado whilst keeping an eye open for nefarious rattlesnakes and bears.

Opinions and content posted by HotHardware contributors are their own.

TOP STORIES
Which New GPU Is For You?
More Results
KEEP INFORMED

Stay updated with the latest news and updates. Subscribe to our newsletter!

Subscribe Now
SITE

Home

Reviews

News

Blogs

Full Site

Sitemap

CATEGORIES

PC Components

Systems

Mobile

IT Infrastructure

Leisure

Videos

COMPANY

About

Advertise

News Tips

Contact

Privacy And Terms

HotTech

MORE

Accessibility

Shop

STAY CONNECTED

Twitter

Facebook

YouTube

RSS

As an Amazon and Howl Technologies Associate, HotHardware earns a commission from qualifying purchases made on this site. This site is intended for informational and entertainment purposes only. The contents are the views and opinion of the author and/or his associates. All products and trademarks are the property of their respective owners. Reproduction in whole or in part, in any form or medium, without express written permission of Hot Hardware, Inc. is prohibited. All content and graphical elements are Copyright © 1999 - 2026 Hot Hardware Inc, Inc.
All rights reserved. Privacy and Terms - Accessibility Commitment