{"id":610763,"date":"2023-11-27T00:00:00","date_gmt":"2023-11-27T00:00:00","guid":{"rendered":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/"},"modified":"2023-11-27T00:00:00","modified_gmt":"2023-11-27T00:00:00","slug":"fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction","status":"publish","type":"post","link":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/","title":{"rendered":"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction"},"content":{"rendered":"<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong> Fawry\u2019s testing environment was hacked<\/strong>, the EGX-listed fintech giant said in a <a target=\"_blank\" href=\"https:\/\/ent.news\/2023\/11\/1361.pdf\" style=\"\" rel=\"noopener\">regulatory filing<\/a><a target=\"_blank\" href=\"https:\/\/ent.news\/2023\/11\/1361.pdf\" style=\"\" rel=\"noopener\">yesterday (pdf)<\/a>.<\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>The background: A post on the dark web alleged that LockBit \u2014 arguably the world\u2019s <\/strong><strong>most sophisticated hacker group \u2014 had hacked Fawry\u2019s systems.<\/strong> That claim went viral on Egyptian social media Thursday, 9 November, triggering a series of disclosures from Fawry.<\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>A forensic audit of more than 2k servers<\/strong>, which serve Fawry\u2019s full suite of products and services, has since found that while production servers were not breached, <strong>a portion of its testing environment was hacked and resulted in the compromise of some customers\u2019 personal data<\/strong>. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>Fawry is far from alone:<\/strong> Everyone from <a target=\"_blank\" href=\"https:\/\/www.wired.com\/insights\/2014\/10\/a-silver-lining-in-the-jp-morgan-breach-3\/\" style=\"\" rel=\"noopener\">JP Morgan<\/a> and <a target=\"_blank\" href=\"https:\/\/techcrunch.com\/2023\/07\/17\/microsoft-lost-keys-government-hacked\/\" style=\"\" rel=\"noopener\">Microsoft<\/a> to <a target=\"_blank\" href=\"https:\/\/www.wired.com\/story\/google-plus-bug-52-million-users-data-exposed\/\" style=\"\" rel=\"noopener\">Google<\/a>, <a target=\"_blank\" href=\"https:\/\/cybernews.com\/news\/stolen-data-of-500-million-linkedin-users-being-sold-online-2-million-leaked-as-proof-2\/\" style=\"\" rel=\"noopener\">LinkedIn<\/a> and <a target=\"_blank\" href=\"https:\/\/edition.cnn.com\/2020\/06\/16\/politics\/cia-wikileaks-vault-7-leak-report\/index.html\" style=\"\" rel=\"noopener\">the<\/a><a target=\"_blank\" href=\"https:\/\/edition.cnn.com\/2020\/06\/16\/politics\/cia-wikileaks-vault-7-leak-report\/index.html\" style=\"\" rel=\"noopener\">CIA<\/a> have been the victims of cyberattacks at one point or another as criminal gangs, state-sanctioned actors, intelligence agencies, and large institutions wage a running battle for that most precious of commodities: information. <strong>It\u2019s not \u201cif\u201d you\u2019re going to be attacked, it\u2019s \u201cwhen\u201d<\/strong> \u2014 and what you do to avoid that attack, to fight it off when it happens, and to pick up the pieces afterward. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>We spoke with Fawry CEO Ashraf Sabry to unpack what happened and what comes next.<\/strong>This transcript of our conversation has been lightly edited for clarity and concision: <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>ENTERPRISE: Were you hacked, as LockBit claimed? <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>ASHRAF SABRY: Yes, we were.<\/strong> Our testing environment, where we test applications before launching to the end-user, was breached by the ransomware organization known as LockBit. Our live production environment \u2014 the one that our clients interact with when they use our services \u2014 was not subject to any compromise, as we disclosed on 10 November after a sweep of our systems. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: Did the compromise on the testing environment include personal data, financial data, <\/strong><strong>or both? <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: Personal data only \u2014 but no data that would allow someone to use that information <\/strong><strong>to execute financial transactions on our system.<\/strong> We ran a thorough investigation and have found no evidence at all that the breach exposed financial data. But yes, some personal data was compromised, and this is horrible. You never want to be in a position to have personal data on your system breached. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: What type of personal information was breached? <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: We believe it may include some customer\u2019s names, their addresses<\/strong>, email addresses, this type of personal data.<\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: How many clients were impacted? <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: It is frankly hard to tell.<\/strong> When a ransomware group comes in, the first thing they do is encrypt the information \u2014 we just don\u2019t have access to it. So a big part of the investigation is working backward to determine what was likely in that testing environment, which will help us identify the nature of the data, but will not enable us to quantify it \u2014 the only way to quantify it is to decrypt the encrypted files. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: How at-risk are people whose personal information was compromised? <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: By itself, the breach of personal data \u2014 while we regret it very deeply \u2014 does not put <\/strong><strong>people at specific risk.<\/strong> For example: When you give someone your bank details on, say an invoice, can they use that information to transfer money out of your account? No. Let\u2019s say it is a credit card, and someone has the front and back of the card. Can that execute a transaction? Typically not \u2014 you need an OTP to complete a transaction. Name, email addresses, dates of birth \u2014 those things alone are not enough to give someone access to your financial life. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: But there is a risk. <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: There is, yes. I\u2019m not downplaying that.<\/strong> But the problem isn\u2019t that a third party could use customer data to perform financial transactions \u2014 the risk is social engineering. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: Can you unpack that? <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: It\u2019s customers getting a call from someone who has some basic information about <\/strong><strong>them and tries to convince them it\u2019s their bank calling.<\/strong> They try to use data like this to convince a customer that it is legitimate. The same thing happens over SMS and email. People reach out, know a bit about you, and the scam is almost invariably to get you to click a link they send to \u201creset your password\u201d or an attempt to get you to give them an OTP. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\">We\u2019re telling all of our customers: <strong>Nobody legitimate is ever going to call you up and ask <\/strong><strong>you to give them data<\/strong>, to reset a password, to give them an OTP. Not us, not your bank, and not the mobile network operators. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>As an industry, banks and financial services providers like us need to do more to educate <\/strong><strong>users about risks<\/strong>, because fraud attempts in the form of social engineering happen every day. Everyone in the industry has been working on this for the past 12 months \u2014 trying to drive awareness of the risk of fraud, and the message is simple: No Egyptian institution will call you to request financial information by email, phone or sms. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>The simple fact is that we all leave personal data in a multitude of places<\/strong> \u2014 not just with Fawry. It\u2019s on our social media profiles. It\u2019s on the systems of the merchants we buy from. Delivery companies know your name, address, and payment information. So does Fawry.<\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: So you think the risk is contained as long as people are aware of the basics of <\/strong><strong>financial fraud? <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: Yes<\/strong>, but they need to be aware of social engineering attacks. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: Hackers aren\u2019t going to go away, whether it\u2019s someone DDOSing a site or a <\/strong><strong>ransomware group. <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: They\u2019re not going to disappear, and neither will the digitization of finance.<\/strong> There\u2019s a global war between cyber criminals and digital institutions. Fawry and others like us need to do everything we can to prevent data breaches \u2014 and we need to teach our clients how to protect themselves. That\u2019s an ongoing, every day process.<\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>I like to draw an analogy between safety in financial services and safety in the airline <\/strong><strong>industry.<\/strong> With the right systems, the right people on the airline and airport and security sides, air travel is much safer than traveling by car. More and more people every year are flying \u2014 and the accident rate is incredibly low because of good systems. That\u2019s what we need in the digital space, and it\u2019s happening: More and more people transact digitally every year, and the percentage of people who are being impacted by data breaches remains low. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: What are you doing to prevent another data breach happening in the future? <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: Our first priority on day one was to make sure that our production system was not <\/strong><strong>compromised<\/strong>, and thankfully we found that our core banking, MyFawry, acceptance, and other systems were 100% clean. It was later, as we went deeper into the testing system, that we found we had an issue. And it took some time to do a forensic analysis, which is what we announced [yesterday]. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>Today, all of our more than 2k servers are on dual active monitoring by global <\/strong><strong>professionals and our teams<\/strong>, but it\u2019s not just about increasing investment in software and physical security \u2014 it\u2019s about governance, too. We\u2019ve already invested in the latest technologies including monitoring tools, firewalls, malware agents, monitoring agents\u2026<\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>What we\u2019re doing now is perhaps more important. <\/strong>We\u2019re working with international organizations to review our risk management policies and framework. And we\u2019re also working with them to see what else we need to invest in. We all need to stay on our toes, because vulnerabilities are everywhere. In just the last few months, for example, vulnerabilities with <a target=\"_blank\" href=\"https:\/\/www.abc.net.au\/news\/2023-11-17\/dp-world-vulnerable-to-citrixbleed-exploit\/103109242\" style=\"\" rel=\"noopener\">Citrix<\/a> and <a target=\"_blank\" href=\"https:\/\/thehackernews.com\/2023\/03\/chinese-hackers-exploit-fortinet-zero.html\" style=\"\" rel=\"noopener\">FortiNet<\/a> have exposed end users to risk.<\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: Let\u2019s change gears as we wrap this up.<\/strong> If your <a target=\"_blank\" href=\"https:\/\/enterprise.news\/egypt\/en\/news\/story\/bf81e766-ba9c-40f5-82c1-d06969c30d66\" style=\"\" rel=\"noopener\">earnings release for the first nine months<\/a><a target=\"_blank\" href=\"https:\/\/enterprise.news\/egypt\/en\/news\/story\/bf81e766-ba9c-40f5-82c1-d06969c30d66\" style=\"\" rel=\"noopener\">(pdf)<\/a> of the year is anything to go by, 2023 has been good to Fawry. Why have profits grown so much faster than revenues? <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: We\u2019ve had a clear strategy over time of driving growth by creating new lines of <\/strong><strong>business and this year we\u2019re hitting critical mass.<\/strong> We\u2019ve made key investments, and as more and more clients adopt those services, the marginal cost comes down. Revenues were up 42% in the first nine months and our bottom line has almost quadrupled. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>E: Will the emphasis on new products continue in 2024, or will it be about consolidation? <\/strong><\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>AS: You can expect to see us paying a lot of attention to small businesses and sole <\/strong><strong>proprietorships<\/strong> \u2014 businesses that have no real access to the financial system, but who have needs. We think we have the infrastructure to serve them in a way and at a cost that meets their needs, whether that\u2019s ins., payment, lending, saving, or payments. We\u2019ll also continue to invest in new services for MyFawry, but I\u2019m particularly excited about looking at B2B. <\/p>\n<p style=\"padding:0;margin:0;line-height:1.15;orphans:2;widows:2;text-align:left\"><strong>It\u2019s inarguable that B2C financial services are way ahead of B2B in Egypt, and sure, B2B <\/strong><strong>is more complex<\/strong> \u2014 it\u2019s more than \u201cYou buy, I send\u201d \u2014 but there is so much to be done in this segment.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Fawry CEO Ashraf Sabry says users need to be vigilant against social engineering attacks<\/p>\n","protected":false},"author":1,"featured_media":610764,"comment_status":"closed","ping_status":"open","sticky":false,"template":"single-feature.php","format":"standard","meta":{"_acf_changed":false,"newspack_ads_suppress_ads":false,"newspack_popups_has_disabled_popups":false,"newspack_sponsor_sponsorship_scope":"","newspack_sponsor_native_byline_display":"inherit","newspack_sponsor_native_category_display":"inherit","newspack_sponsor_underwriter_style":"inherit","newspack_sponsor_underwriter_placement":"inherit","ep_exclude_from_search":false,"_primary_brand":0,"newspack_featured_image_position":"","newspack_post_subtitle":"","newspack_article_summary_title":"Overview:","newspack_article_summary":"","newspack_hide_updated_date":false,"newspack_show_updated_date":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[7691],"tags":[521,377,72,519,7087,183],"brand":[],"newspack_spnsrs_tax":[],"class_list":["post-610763","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-finance","tag-ashraf-sabry","tag-cybersecurity","tag-enterpriseam","tag-fawry","tag-finance","tag-fintech","wpautop","entry"],"acf":{"mongo_id":"a4457b19-b82f-4016-9455-edd61d94f112","order":"0","is_powered_by":false,"story_type":"1","photo_url":"https:\/\/ent.news\/2023\/11\/1436.jpg","photo_position":"above","homepage_title":"","full_issue_title":"Egyptian fintech player Fawry confirms LockBit data breach","related_issue":[610758],"teaser":"Fawry CEO Ashraf Sabry says users need to be vigilant against social engineering attacks","voice_url":"https:\/\/s3.us-east-1.amazonaws.com\/ent.news\/audio\/2023\/11\/.ade76d94-3a1d-4b24-9c93-7e5503e463ad.mp3"},"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.1 (Yoast SEO v27.1.1) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction - EnterpriseAM Egypt<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction\" \/>\n<meta property=\"og:description\" content=\"Fawry CEO Ashraf Sabry says users need to be vigilant against social engineering attacks\" \/>\n<meta property=\"og:url\" content=\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/\" \/>\n<meta property=\"og:site_name\" content=\"EnterpriseAM Egypt\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-27T00:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1\" \/>\n<meta name=\"author\" content=\"enterpriseam admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"enterpriseam admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"8 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/\"},\"author\":{\"name\":\"enterpriseam admin\",\"@id\":\"https:\/\/enterpriseam.com\/egypt\/#\/schema\/person\/ca597032db7e4db868359c123cec256d\"},\"headline\":\"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction\",\"datePublished\":\"2023-11-27T00:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/\"},\"wordCount\":1550,\"publisher\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/#organization\"},\"image\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1\",\"keywords\":[\"Ashraf Sabry\",\"cybersecurity\",\"EnterpriseAM\",\"Fawry\",\"Finance\",\"Fintech\"],\"articleSection\":[\"Finance\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/\",\"url\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/\",\"name\":\"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction - EnterpriseAM Egypt\",\"isPartOf\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1\",\"datePublished\":\"2023-11-27T00:00:00+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/enterpriseam.com\/egypt\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/enterpriseam.com\/egypt\/#website\",\"url\":\"https:\/\/enterpriseam.com\/egypt\/\",\"name\":\"EnterpriseAM\",\"description\":\"The State of the Nation\",\"publisher\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/enterpriseam.com\/egypt\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/enterpriseam.com\/egypt\/#organization\",\"name\":\"EnterpriseAM\",\"url\":\"https:\/\/enterpriseam.com\/egypt\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/enterpriseam.com\/egypt\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/ent.news\/internal\/240894.svg\",\"contentUrl\":\"https:\/\/ent.news\/internal\/240894.svg\",\"caption\":\"EnterpriseAM\"},\"image\":{\"@id\":\"https:\/\/enterpriseam.com\/egypt\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/enterpriseam.com\/egypt\/#\/schema\/person\/ca597032db7e4db868359c123cec256d\",\"name\":\"enterpriseam admin\",\"sameAs\":[\"http:\/\/enterpriseam.testing.projectsarea.com\"],\"url\":\"https:\/\/enterpriseam.com\/egypt\/author\/enterpriseam\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction - EnterpriseAM Egypt","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/","og_locale":"en_US","og_type":"article","og_title":"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction","og_description":"Fawry CEO Ashraf Sabry says users need to be vigilant against social engineering attacks","og_url":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/","og_site_name":"EnterpriseAM Egypt","article_published_time":"2023-11-27T00:00:00+00:00","og_image":[{"url":"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1","type":"","width":"","height":""}],"author":"enterpriseam admin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"enterpriseam admin","Est. reading time":"8 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#article","isPartOf":{"@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/"},"author":{"name":"enterpriseam admin","@id":"https:\/\/enterpriseam.com\/egypt\/#\/schema\/person\/ca597032db7e4db868359c123cec256d"},"headline":"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction","datePublished":"2023-11-27T00:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/"},"wordCount":1550,"publisher":{"@id":"https:\/\/enterpriseam.com\/egypt\/#organization"},"image":{"@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1","keywords":["Ashraf Sabry","cybersecurity","EnterpriseAM","Fawry","Finance","Fintech"],"articleSection":["Finance"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/","url":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/","name":"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction - EnterpriseAM Egypt","isPartOf":{"@id":"https:\/\/enterpriseam.com\/egypt\/#website"},"primaryImageOfPage":{"@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#primaryimage"},"image":{"@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1","datePublished":"2023-11-27T00:00:00+00:00","breadcrumb":{"@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#primaryimage","url":"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1","contentUrl":"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1"},{"@type":"BreadcrumbList","@id":"https:\/\/enterpriseam.com\/egypt\/2023\/11\/27\/fawry-confirms-data-breach-after-hack-of-its-testing-environment-leaked-data-isnt-sufficient-for-hackers-to-run-a-transaction\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/enterpriseam.com\/egypt\/"},{"@type":"ListItem","position":2,"name":"Fawry confirms data breach after hack of its testing environment; leaked data isn\u2019t sufficient for hackers to run a transaction"}]},{"@type":"WebSite","@id":"https:\/\/enterpriseam.com\/egypt\/#website","url":"https:\/\/enterpriseam.com\/egypt\/","name":"EnterpriseAM","description":"The State of the Nation","publisher":{"@id":"https:\/\/enterpriseam.com\/egypt\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/enterpriseam.com\/egypt\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/enterpriseam.com\/egypt\/#organization","name":"EnterpriseAM","url":"https:\/\/enterpriseam.com\/egypt\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/enterpriseam.com\/egypt\/#\/schema\/logo\/image\/","url":"https:\/\/ent.news\/internal\/240894.svg","contentUrl":"https:\/\/ent.news\/internal\/240894.svg","caption":"EnterpriseAM"},"image":{"@id":"https:\/\/enterpriseam.com\/egypt\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/enterpriseam.com\/egypt\/#\/schema\/person\/ca597032db7e4db868359c123cec256d","name":"enterpriseam admin","sameAs":["http:\/\/enterpriseam.testing.projectsarea.com"],"url":"https:\/\/enterpriseam.com\/egypt\/author\/enterpriseam\/"}]}},"featured_image_src":"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?resize=600%2C400&ssl=1","featured_image_src_square":"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?resize=600%2C600&ssl=1","author_info":{"display_name":"enterpriseam admin","author_link":"https:\/\/enterpriseam.com\/egypt\/author\/enterpriseam\/"},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/ent.news\/2023\/11\/1436.jpg?fit=%2C&ssl=1","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":561261,"url":"https:\/\/enterpriseam.com\/egypt\/2021\/03\/31\/fawry-net-income-surges-81-in-2020\/","url_meta":{"origin":610763,"position":0},"title":"Fawry net income surges 81% in 2020","author":"enterpriseam admin","date":"31 March 2021","format":false,"excerpt":"Fawry\u2019s net income increased 81% y-o-y in 2020 to reach EGP 186 mn, up from EGP 103 mn the year before, according to a company earnings release (pdf). Revenues were up almost 40% to EGP 1.2 bn, thanks to rapid growth in the company\u2019s microfinance and banking services. The strong\u2026","rel":"","context":"In &quot;EARNINGS WATCH&quot;","block_context":{"text":"EARNINGS WATCH","link":"https:\/\/enterpriseam.com\/egypt\/category\/companies\/earnings-watch\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/ent.news\/internal\/536550.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":576376,"url":"https:\/\/enterpriseam.com\/egypt\/2020\/11\/22\/fawry-and-banque-du-caire-sign-contract-for-remittance-transfer-service\/","url_meta":{"origin":610763,"position":1},"title":"Fawry and Banque du Caire sign contract for remittance transfer service","author":"enterpriseam admin","date":"22 November 2020","format":false,"excerpt":"EGX-listed e-payments platform Fawry and Banque du Caire have signed a contract to set up an instant remittance transfer service through Fawry outlets, Fawry CEO Ashraf Sabry told Al Mal. The Central Bank of Egypt approved Fawry\u2019s request to set up a remittance transfer service with a local bank last\u2026","rel":"","context":"In &quot;Banking + Finance&quot;","block_context":{"text":"Banking + Finance","link":"https:\/\/enterpriseam.com\/egypt\/category\/banking-finance\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/ent.news\/internal\/536550.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":542884,"url":"https:\/\/enterpriseam.com\/egypt\/2022\/01\/23\/fawry-eyes-capital-increase-us-listing\/","url_meta":{"origin":610763,"position":2},"title":"Fawry eyes capital increase, US listing","author":"enterpriseam admin","date":"23 January 2022","format":false,"excerpt":"US listing in the works for Fawry? EGX-listed e-payments giant Fawry has received approval from its board of directors to create an American depositary shares (ADS) program, which would allow the company to list shares in the US, and is exploring an SEC-registered secondary offering to follow, CEO Ashraf Sabry\u2026","rel":"","context":"In &quot;FINANCE WATCH&quot;","block_context":{"text":"FINANCE WATCH","link":"https:\/\/enterpriseam.com\/egypt\/category\/finance-watch\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/ent.news\/2022\/1\/270.jpg?fit=%2C&ssl=1&resize=350%2C200","width":350,"height":200},"classes":[]},{"id":576255,"url":"https:\/\/enterpriseam.com\/egypt\/2020\/11\/17\/earnings-fawry-phd-al-ahly-for-development-and-investment-adib-misr-cement-qena\/","url_meta":{"origin":610763,"position":3},"title":"Earnings: Fawry, PHD, Al Ahly for Development and Investment, ADIB, Misr Cement (Qena)","author":"enterpriseam admin","date":"17 November 2020","format":false,"excerpt":"EARNINGS WATCH- Fawry\u2019s net profit surged 99% y-o-y in 9M2020 to EGP 119.1 mn from EGP 59.7 mn last year, according to a company earnings release (pdf). Revenues rose 45% to EGP 892.7 mn from EGP 614.9 mn last year. \u201cFawry\u2019s top line continues to grow at a rapid clip\u2026","rel":"","context":"In &quot;Speed Round&quot;","block_context":{"text":"Speed Round","link":"https:\/\/enterpriseam.com\/egypt\/category\/speed-round\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/ent.news\/internal\/536550.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":558978,"url":"https:\/\/enterpriseam.com\/egypt\/2021\/01\/04\/fawry-microfinance-to-obtain-egp-310-mn-loans-from-eaef-banque-misr\/","url_meta":{"origin":610763,"position":4},"title":"Fawry Microfinance to obtain EGP 310 mn loans from EAEF, Banque Misr","author":"enterpriseam admin","date":"4 January 2021","format":false,"excerpt":"Fawry Microfinance greenlights EGP 310 mn debt to fuel expansion: Fawry subsidiary Fawry Microfinance is taking on an EGP 160 mn loan from the Egyptian-American Enterprise Fund (EAEF) and a EGP 150 mn credit facility from Banque Misr after the parent company\u2019s ordinary general assembly approved the terms on Thursday,\u2026","rel":"","context":"In &quot;DEBT WATCH&quot;","block_context":{"text":"DEBT WATCH","link":"https:\/\/enterpriseam.com\/egypt\/category\/debt-watch\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/ent.news\/internal\/536550.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":557496,"url":"https:\/\/enterpriseam.com\/egypt\/2021\/09\/21\/fawry-acquires-minority-stake-in-social-commerce-startup-brimore\/","url_meta":{"origin":610763,"position":5},"title":"Fawry acquires minority stake in social commerce startup Brimore","author":"enterpriseam admin","date":"21 September 2021","format":false,"excerpt":"Egyptian e-payments giant Fawry has acquired a minority stake in social commerce company Brimore for EGP 15.7 mn, Fawry said in a statement to the bourse (pdf), without disclosing what that sake represents in percentage terms. The investment was made as part of an upcoming series A funding round by\u2026","rel":"","context":"In &quot;M&amp;A WATCH&quot;","block_context":{"text":"M&amp;A WATCH","link":"https:\/\/enterpriseam.com\/egypt\/category\/ma-watch\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/ent.news\/2021\/9\/288.jpg?fit=%2C&ssl=1&resize=350%2C200","width":350,"height":200},"classes":[]}],"_links":{"self":[{"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/posts\/610763","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/comments?post=610763"}],"version-history":[{"count":0,"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/posts\/610763\/revisions"}],"acf:post":[{"embeddable":true,"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/issue\/610758"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/media\/610764"}],"wp:attachment":[{"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/media?parent=610763"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/categories?post=610763"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/tags?post=610763"},{"taxonomy":"brand","embeddable":true,"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/brand?post=610763"},{"taxonomy":"newspack_spnsrs_tax","embeddable":true,"href":"https:\/\/enterpriseam.com\/egypt\/wp-json\/wp\/v2\/newspack_spnsrs_tax?post=610763"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}