December 6, 2016

Ashampoo Security Breach – Names and Email Addresses Taken

At the moment there seems to be a cyber crime wave and attackers are picking top names on the Internet to attack and hack. Recently servers at RSA were breached and then Epsilon was attacked. Now Ashampoo, the German software company best known for Ashampoo Burning Studio and Ashampoo WinOptimizer, has been attacked.

According to an email sent to its customers today Ashampoo detected an unauthorized access to one of its server systems and customer data was exposed. However it does want to reassure customers that billing information (e.g. credit card information or banking information) was definitely not taken as this data is not stored on its systems. As soon as the break-in was detected it was interrupted instantly, the security gap closed and the incident reported to the police.

Ashampoo is warning its customers of possible after effects of the theft and it cites the example of PurelyGadgets who announced that its servers were used to send bogus confirmations of orders. The emails contained a manipulated PDF document in the attachments that exploited vulnerabilities in Adobe Acrobat Reader to load malicious code on the recipients PC.

If you have further questions concerning this issue, Ashampoo’s support team (security@ashampoo.com) is at hand for help and advice. Inquiries in this context are being handled with the highest priority.