Cloud hosting provider DigitalOcean has disclosed a data breach which occurred due to a flaw exposing customers’ billing information.
According to an email sent out to impacted customers by DigitalOcean, a “flaw” allowed an unauthorized user to access customers’ billing details between April 9th, 2021, and April 22nd, 2021.
The hosting provider stated that the flaw has been fixed now and that the exposure has impacted only a small percentage of their customers.
The exposed information includes a customer’s billing name, billing address, payment card expiration, last four digits of credit card, and the payment card’s bank name.
DigitalOcean has disclosed the breach to data protection authorities. According to Tyler Healy, VP Security at DigitalOcean, this flaw exposed only 1% of billing profiles.
DigitalOcean also suffered a data breach last year when they made a document containing information about customer’s accounts available via a public link.