AU10TIX Details

    Organization Logo

    AU10TIX

    Hod HaSharon, Israel190 employees • Technology

    https://www.au10tix.com/
    Israel

    Industry

    Technology

    Security Incidents

    1

    AU10TIX is an identity verification and risk management company specializing in automating the authentication of identification documents and biometric security. Founded to address the increasing need for secure identity verification, the company provides solutions that enable businesses to securely onboard and verify customers. AU10TIX offers a range of products, including an automated global identity management system and a solution designed to detect and prevent organized ID fraud mass attacks. Over the years, AU10TIX has garnered recognition for its innovative approach to identity verifica...
    Show more

    Security Incidents

    AU10TIX Breach of Jun 2024
    Severity Score
    Moderate to Significant

    Type

    Data Breach

    Summary

    AU10TIX, an Israeli-based authentication company providing services for major brands such as Uber, TikTok, and LinkedIn, exposed a set of administration credentials online, inadvertently allowing potential access to user identity documents like drivers' licenses for over a year. These credentials, discovered by a researcher and shared with 404 Media, led to a logging platform containing sensitive information including names, dates of birth, nationalities, identification numbers, and images of the uploaded documents. The exposure, likely resulting from an infostealer on a Network Operations Cen...
    Show more

    Severity

    The severity of the cybersecurity incident involving AU10TIX, an Israeli-based authentication company, is rated as a 6, placing it in the "Moderate to Significant" category. The exposed administration credentials, which were accessible online for over a year, potentially allowed unauthorized access to sensitive user identity documents, including driving licenses, for clients of major brands like Uber, TikTok, and LinkedIn. Although AU10TIX has stated there is no evidence of misuse, the prolonged exposure of personal identifiable information (PII) and the sophisticated nature of the attack, sus...
    Show more

    Impact

    AU10TIX, an authentication firm servicing major brands, experienced a significant data breach resulting from the exposure of administration credentials online for over a year. This incident potentially allowed unauthorized access to a trove of sensitive user identity documents like driving licenses, including personal details such as names, dates of birth, nationalities, and identification numbers. While AU10TIX asserted that there was no evidence of data exploitation, the exposed credentials could have provided malicious actors a way to access and misuse this information. This breach undersco...
    Show more

    KEEP YOUR ENVIRONMENT SECURE

    Weak credentials are the leading cause of breaches. Beyond Identity can help.

    See MFA exploits in action
    Watch how adversaries exploit companies in quick videos