Viking Line, a Finnish ferry transportation company, has allegedly been compromised by an unidentified threat actor. The attacker claims to have exploited a Local File Inclusion (LFI) vulnerability within Solr to obtain Tomcat credentials, eventually pivoting to the master database. The breach reportedly involves a complete database of traveler personal information, as well as a secondary database compiled through the NetAxept API, which is used to process payments for restaurants and services during the journeys.
The allegedly compromised data includes:
-
Full names
-
Email addresses
-
Phone numbers
-
Vehicle registration plates
-
Payment amounts and transaction comments
-
Internal system accounts (emails, roles, and password hashes)
Daily Dark WebRead More
R1
T1
