A threat actor is selling account databases containing a total of 34 million user records from 17 companies stolen during data breaches.
A threat actor is selling account databases containing a total of 34 million user records from 17 companies stolen during data breaches.
On October 28th, a threat actor created a new topic on the hacker forum to sell the user data stolen from 17 companies.
BleepingComputer first reported the availability of vast trove of account data where the threat actor told them that it was only acting as a broker and did not hack the seventeen companies.
It is still not clear how someone obtained the records from the allegedly hacked companies. The data were circulating in the hacking underground, and we're privately sold to various threat actors. Eventually, it is common for the stolen databases to be released for free on hacker forums.
According to the seller, the account databases are the results of data breaches that took place in 2020; none of the companies has disclosed security breaches before this week.
The seventeen companies are 8.1 million (8.1 million), Clip.mx (4.7 million), Wongnai.com (4.3 million), Cermati.com (2.9 million), Everything5pounds.com (2.9 million), Eatigo.com (2.8 million), Katapult.com (2.2 million), Wedmegood.com (1.3 million), RedMart (1.1 million), Coupontools.com (1 million), W3layouts.com (789 thousand), Game24h.vn (779 thousand), Invideo.io (571 thousand), Apps-builder.com (386 thousand), Fantasycruncher.com (227 thousand), Athletico.com.br (162 thousand), Toddycafe.com (129 thousand).
Only RedMart disclosed a security breach after being informed by BleepingComputer.
“From the samples of each database seen by BleepingComputer, we have confirmed that exposed email addresses correspond to accounts for thirteen of the allegedly seventeen breached services. We could not verify accounts for Clip.mx, Katapult, CouponTools, or Aps-builder.com.” states BleepingComputer.
Users are warned to change their passwords immediately, and if they use the same passwords at other sites, they should also change the password at those sites.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?