GMO Payment Gateway confirms data leakage from two client websites

GMO Payment Gateway confirms data leakage from two client websites

Maria Nikolova

The personal information that leaked includes credit card numbers, expiration dates, email addresses, names, dates of birth, and phone numbers.

Information security is key in the financial industry but problems concerning maintaining personal data safe keep emerging. GMO Payment Gateway Inc (TYO:3769), the Japanese provider of payment processing services, has sought to apologize over personal data leakage that affected the websites of two of its clients – the Tokyo Metropolitan Government and the Japan Housing Finance Agency.

The problems, which were initially detected on March 9, 2017, affected the Tokyo Metropolitan Government credit card payment site for metropolitan tax, as well as the credit card payment site for group life insurance rider of the Japan Housing Finance Agency.

In an official statement, GMO Payment Gateway apologized to customers affected and provided details on what happened.

The number of “units of information” leaked through the Tokyo Metropolitan Government website is 676,290, including 614,629 email addresses, as well as 61,661 credit card numbers and credit card expiration dates.

The number of “units” of credit card information reportedly leaked from the Japan Housing Finance Agency is 43,540, including credit card numbers, credit card expiration dates, security codes, credit card payment registration dates, addresses, email addresses, names, phone numbers, as well as dates of birth and payment joining dates.

GMO Payment explains that it started its investigation into a possible information leak on March 9, 2017, following alerts concerning the security of Apache Struts 2. It looked into the possibility of unauthorized access at the same time. About six hours after it started investigating, it found unauthorized access traces and stopped all systems running with Apache Struts 2.

On March 10, 2017, GMO Payment Gateway applied a permanent fix to all related systems and, subsequently, determined the amount of information that was possibly affected by the external unauthorized access.

Regarding future action in response to the incident, GMO Payment Gateway notes that upon consulting with the companies impacted by the leakage, it will promptly implement necessary measures to protect all of the customers affected. On top of that, considering preventive measures, GMO Payment Gateway has commenced a new system investigation that will be conducted by an information security company. GMO PG will also cooperate with the police with relation to the investigation.

Read this next

Industry News

Cboe boosts its incentives

A focus on market quality meant that the Cboe BZX exchange was able to capture 36% of all new ETP launches in the US in 2020

Industry News

European ETFs enjoy a trading boom

For Europe as a whole ETF turnover rose by an average of 46% in 2020 to stand at just under €683 billion, or $828 billion

Industry News

Virtu launches big data tools for the buyside

Leveraging existing data science capabilities is a clever retention tool, particularly if that data analysis can show your customers that you are doing a good job

Inside View

Beep beep. Why are FX brokers still using legacy technology? We all need to move on

FX, CFD and listed derivatives brokers need to take heed of how to engage brokers properly. We look inside the developments that are vital to the growth and future sustainability of brokers, and why legacy opinion and sitting on the fence will not work out. Here is the solution.

Industry News

OANDA adds new cross-border payment solution for companies in North America

The partnership combines OANDA’s deep-seated expertise in foreign exchange with Currencycloud’s best-of-breed payment technology and Shift Connect’s world-class customer support to offer a simple-to-use, reliable international money transfer solution for businesses, large or small.

Inside View

Inside view on endless crippling regulation in FX. Surely MiFID was enough?

It still looks as though the whole regulatory obsession with spot FX may be driven by the exchange lobby, hence if you can’t beat them join them – the only thing is of course that if most FX brokers brought their skill and tenacity to the multi asset market, they certainly would beat the exchanges hands down.

Industry News

FXOpen announces the launch of the ForexCup Trading Championship 2021

Global FX and CFD broker FXOpen has today announced they are offering traders the opportunity to compete with the best, to win 50,000 USD, with the launch of the ForexCup Trading Championship 2021.

Industry News

Citadel Securities dominates European FX, and is one of the most profitable businesses in the world

Non bank market makers are absolutely dominating the growth of FX order flow execution. Citadel Securities is now the largest internalizer in Europe by market share, a battle it is winning against Tier 1 banks alongside global leader XTX Markets. It is good to see the OTC sector holding its own.

Industry News

Playtech confirms it has been approached over the sale of Finalto

Finalto was described by the company as Playtech’s outstanding performer in H1 2020