FlexBooker

In December 2021 the online appointment scheduling platform FlexBooker suffered a major data breach after its AWS cloud environment was compromised by a threat actor group known as Uawrong. The breach resulted in the theft of an estimated 3.7 million user records. The exposed database contained highly sensitive information including account details and partial payment card data. FlexBooker later confirmed that their servers were accessed via a vulnerability in their cloud infrastructure allowing hackers to download system data backups.