Hello Markets CRM data still publicly available to all as security breach continues after company stated it had been resolved

Last week, FinanceFeeds reported that Hello Markets CRM data is fully available, including the intellectual property of all affiliates, to the public by simply following a few steps involving copying and pasting a URL. We approached Hello Markets, who stated that they had resolved it, however, the problem still prevails.

new forex website

At the end of last week, FinanceFeeds reported that, following a series of tests conducted by FinanceFeeds in conjunction with several affiliates and white label partners of platform provider Hello Markets, the company’s CRM data had been publicly available and displayed the entire databases of affiliates by just copy pasting a URL.

As a result, we discovered that all affiliates could access the data of brokerages which are white label brands of this particular platform provider / market maker without any restriction whatsoever.

Hence, brands which use this platform risk having their own intellectual property displayed publicly, which in turn means that other brands could simply copy and paste it into their own databases.

FinanceFeeds has studied this in detail, and has performed several tests with regard to this, as well as drawing on the experience of several affiliates.

Both FinanceFeeds and the affiliates that we approached were able to replicate this several times, in a very simple copy/paste action relating to some of the source code from the Hello Markets platform which can be simply exported and pasted to a different part of the portal, exposing every CRM record in the system.

Upon testing this to a significant enough degree to realize that it is indeed an issue, FinanceFeeds raised the matter with Hello Group, the parent company of the Hello Markets platform.

At the time, we approached the company’s Senior Marketing Manager Khaled Slim, who is also head of Hello Markets’ Cyprus office, and during that particular interaction with the company, FinanceFeeds provided a full set of data and stages by which Hello Markets itself was able to replicate this.

Mr. Slim explained to FinanceFeeds that this would be investigated immediately, and shortly afterwards explained “We are very grateful for this having been pointed out, and have now taken it to our developers who have rectified it without delay.”

“Hello Group is absolutely committed to ensuring complete data security, hence this matter has now been completely resolved and we assure all affiliates and customers that there is no longer any ability to access such data” he concluded.

At that time, in the interests of attempting to assist Hello Markets in resolving the matter and mitigating any consequences to its clients, FinanceFeeds agreed with Mr. Slim not to publish the procedure that we discovered which reveals the data of all affiliates, in the agreement that the entire matter had been resolved.

However, this week, FinanceFeeds, again with the assistance of affiliates using the Hello Markets platform, have been consistently able to replicate this security error over and over, which confirms that it has not been resolved at all, and that the security breach still exists.

This is a grave situation in that it could be simply lack of due diligence on the part of developers and testers, which of course does happen in any software development environment from time to time, or it could be, or lack of will to resolve the matter.

In the interests of investigative journalistic ethics, FinanceFeeds took this matter up once again with Hello Markets, providing 24 hours for a corporate statement on the matter, and demonstrating that this matter has not been rectified, despite the company’s statement to FinanceFeeds last week having been adamant that it was resolved.

No reply was forthcoming from Hello Markets to our request from the company as to why this matter was not resolved.

 

Read this next

Reviews

Traders Union Experts Share The Trading Analyst Review For 2024

Navigating options trading in rapidly shifting markets poses a considerable challenge. This is where options trading alert services become invaluable. They aid traders in keeping abreast of evolving opportunities and market trends. In this assessment, Traders Union experts scrutinize The Trading Analyst alert service to ascertain its efficacy. 

Digital Assets

BlockDAG’s Presale Achieves $9.9M: Aiming For A 5000-Fold ROI As Cardano’s Price Rises And Fantom Launches Sonic

Explore Cardano’s surge, Sonic’s efficiency, and why BlockDAG’s growth makes it the top crypto choice. A deep dive into the future of blockchain investments.

Digital Assets

US, UK probe $20 billion Tether transfers tied to Russian exchange.

U.S. and UK authorities are investigating the movement of $20 billion in the USD-pegged stablecoin tether (USDT) through Moscow-based exchange Garantex.

Digital Assets

BlockDAG Presale Raises $9.9M as Batch 5 Nears Sell-Out Amid Bonk’s Fluctuating Trading Volume & Spell’s Bullish Price

Explore BONK’s trading volume, SPELL’s market shifts, and why BlockDAG’s 10,000 ROI makes it an ideal crypto for savvy investors in 2024.

Digital Assets

Bybit expands into Europe amid regulatory scrutiny

Dubai-based cryptocurrency exchange Bybit is expanding its operations in Europe after encountering regulatory challenges in Hong Kong.

Digital Assets

Cathie Wood’s sponsored Bitcoin ETF sees historic $200 million inflows

The ARK 21Shares Bitcoin ETF (ARKB), co-sponsored by Cathie Wood’s ARK Invest, registered historic inflows exceeding $200 million on Wednesday, signaling a robust appetite among investors for Bitcoin-centric investments.

Digital Assets

Sam Bankman-Fried might see his 25-year sentence halved

Sam Bankman-Fried, the founder of the failed cryptocurrency exchange FTX, was sentenced to 25 years in federal prison by a Manhattan court on Thursday. This comes after he was convicted of defrauding customers and investors, with Judge Lewis Kaplan highlighting the potential future risks posed by Bankman-Fried.

Technical Analysis

EURJPY Technical Analysis Report 28 March, 2024

EURJPY currency pair under the bearish pressure after the pair reversed down from the major resistance level 164.25, which also stopped the sharp weekly uptrend at the end of last year,

Digital Assets

BlockDAG’s Presale Hits $9.9M, MultiversX & MINA Price Predictions Show Green

Read about BlockDAG’s promising $10 prediction and insights on MultiversX Price Prediction as MINA’s potential unfolds.

<