A cybercriminal gained unauthorized access to the internal tracking device manufacturer Tile’s customer service platform, resulting in the theft of sensitive information such as names and phone numbers. Tile is known for its Bluetooth-enabled devices like Sticker. The attacker obtained login credentials for a system from the hardware manufacturer, potentially belonging to a former employee.
404 Media reported on the breach based on samples and screenshots of Tile data they accessed. The stolen data did not include the location of Tile devices, but it did contain customer information like names, addresses, email addresses, payment details, and phone numbers. Life360, which acquired Tile, acknowledged an attempted criminal extortion regarding Tile customer information. They confirmed unauthorized access to a Tile customer service platform but not to its service platform.
The compromised data consisted of names, email addresses, and phone numbers, but not more sensitive information like login passwords or credit card numbers. Life360 believes the incident was limited to the customer service platform and not widespread. They are taking measures to protect their systems further. The breach did not include confidential data like login passwords or credit card numbers due to the compromised service platform.
Life360 is continuing to investigate the breach and secure their systems while also urging customers to monitor their accounts for any suspicious activity.
In conclusion, this incident highlights the importance of cybersecurity measures for both hardware manufacturers and software developers alike. Companies must take proactive steps to protect their internal tools and platforms from cyber threats in order to prevent such breaches from happening in the future.
