GMO Payment Gateway confirms data leakage from two client websites

Maria Nikolova

The personal information that leaked includes credit card numbers, expiration dates, email addresses, names, dates of birth, and phone numbers.

Information security is key in the financial industry but problems concerning maintaining personal data safe keep emerging. GMO Payment Gateway Inc (TYO:3769), the Japanese provider of payment processing services, has sought to apologize over personal data leakage that affected the websites of two of its clients – the Tokyo Metropolitan Government and the Japan Housing Finance Agency.

The problems, which were initially detected on March 9, 2017, affected the Tokyo Metropolitan Government credit card payment site for metropolitan tax, as well as the credit card payment site for group life insurance rider of the Japan Housing Finance Agency.

In an official statement, GMO Payment Gateway apologized to customers affected and provided details on what happened.

The number of “units of information” leaked through the Tokyo Metropolitan Government website is 676,290, including 614,629 email addresses, as well as 61,661 credit card numbers and credit card expiration dates.

The number of “units” of credit card information reportedly leaked from the Japan Housing Finance Agency is 43,540, including credit card numbers, credit card expiration dates, security codes, credit card payment registration dates, addresses, email addresses, names, phone numbers, as well as dates of birth and payment joining dates.

GMO Payment explains that it started its investigation into a possible information leak on March 9, 2017, following alerts concerning the security of Apache Struts 2. It looked into the possibility of unauthorized access at the same time. About six hours after it started investigating, it found unauthorized access traces and stopped all systems running with Apache Struts 2.

On March 10, 2017, GMO Payment Gateway applied a permanent fix to all related systems and, subsequently, determined the amount of information that was possibly affected by the external unauthorized access.

Regarding future action in response to the incident, GMO Payment Gateway notes that upon consulting with the companies impacted by the leakage, it will promptly implement necessary measures to protect all of the customers affected. On top of that, considering preventive measures, GMO Payment Gateway has commenced a new system investigation that will be conducted by an information security company. GMO PG will also cooperate with the police with relation to the investigation.

Read this next

Digital Assets

Midas launches investment strategies for the ‘crypto winter’

Midas.Investments has released three new investment strategies on its custodial CeDeFi platform, creating new opportunities during the ‘crypto winter’.   The platform merges diverse approaches to digital asset management into single-click products to let investors gain steady profits in any market conditions — including the ongoing bear market. a custodial CeDeFi platform, CeDeFi: Unlocking the […]

Digital Assets

Bitcoin.com Wallet adds several ERC-20 tokens

The product expansion includes representatives of the DeFi world, the Metaverse, and the largest stablecoins.

Market News

Savvy Investors to Profit Whether the Stock Market Rebounds or Not

Equities have gone up enormously since the low. SP500 has gained 13.88% since June 17. In August, the indices drifted sideways. On Wall Street, veteran investors expect a move in either direction.

Industry News

Wall Street-backed MEMX obtains SEC approval for options trading platform

The company has raised more than $135 million in funding from 18 stock trading and investing heavyweights, including BlackRock, Citadel Securities, and Morgan Stanley.

Industry News

Amundi US launches ESG strategy that seeks to outperform S&P 500

Amundi’s Responsible investing team includes more than 45 specialists, and its ESG analysis covers more than 13,500 issuers across debt and equity.

Industry News

Verto launches embedded FX payments solution

The Verto API automates currency conversions, tracks payments and exchange rates in real-time, and is being launched in the follow-up of a $10 million in Series A funding last year.

Industry News

SEC awards over $16m to whistleblowers after another successful enforcement action

The program is 10 years-old and has arguably played a critical role in the Division of Enforcement’s ability to effectively detect wrongdoing, protect investors and the marketplace, and bring violators to justice.

Digital Assets

Ripple submits most succint explanation of Hinman issue in XRP lawsuit

It might be useful to get up to date as this could be the end of the road for the SEC.

Retail FX

TradingView integrates first Brazilian broker, Órama Investimentos

Órama offers all kinds of investment products, from fixed income to crypto-related funds.

<