Graphic by William Joel / The Verge
MoviePass, the theater subscription service still inexplicably trying to stay in business, left thousands of customers’ credit card numbers and other sensitive pieces of data exposed for anyone to find on an online database, according to a report from TechCrunch. A cybersecurity expert named Mossab Hussain, from a Dubai-based firm named SpiderSilk, discovered the unprotected server and shared sample data sets with TechCrunch to confirm that MoviePass was in fact leaving the data unencrypted and accessible to anyone.
According to TechCrunch, the data includes both MoviePass debit card numbers and the actual personal credit card details of customers, including credit card numbers, expiration dates, billing addresses, and names. TechCrunch…