Security experts reported that a data breach broker is selling the allegedly stolen user records from twenty-six companies on a hacker forum.
Security experts reported that a data breach broker is selling the allegedly stolen user records from twenty-six companies on a hacker forum.
Data stolen from companies by threat actors and hacking groups are commonly sold through data breach brokers, who advertise and sell the data for them. The data breach brokers will market the stolen data by creating posts on hacker forums and dark web marketplace.
“Last Friday, a data broker began selling the combined total of 368.8 million stolen user records for twenty-six companies on a hacker forum,” reported Bleeping Computer.
“Teespring is being sold for $3,800-$4,000, MyON for $2,800, and Chqbook for $1,800. The broker has not decided on pricing for the other databases.”
The full record of affected companies published by BleepingComputer is listed below,
| Company | User Records | Known? |
| Teespring.com | 8.2 million | No |
| MyOn.com | 13 million | No |
| Chqbook | 1 million | No |
| Anyvan.com | 4.1 million | No |
| Eventials.com | 1.4 million | No |
| Wahoofitness.com | 1.7 million | No |
| Sitepoint.com | 1 million | No |
| Clickindia.com | 8 million | No |
| Juspay.in | 100 million | Yes |
| Knockcrm.com | 6 million | Yes |
| Mindful.org | 1.7 million | Yes |
| Bigbasket.com | 20 million | Yes |
| Reddoorz.com | 5.8 million | Yes |
| Hybris.com (SAP.com) | 4 million | SAP client data |
| Wedmegood.com | 1.3 million | Yes |
| Wongnai.com | 4.3 million | Yes |
| Geekie.com.br | 8.1 million | Yes |
| Accuradio.com | 2.2 million | Yes |
| Everything5pounds.com | 2.9 million | Yes |
| Cermati.com | 2.9 million | Yes |
| Netlog.com (two.com) | 53 million | Yes |
| Riverbnation.com | 7.8 million | Yes |
| Fotolog.com | 33 million | Yes |
| Pizap.com | 60 million | Yes |
| ModaOperandi.com | 1.2 million | Yes |
| Singlesnet.com | 16 million | Yes |
Some companies confirmed the incident to BleepingComputer while others claim that they haven’t suffered any security breach.
Chqbook reported to BleepingComputer that no data breach and no information belonging to customers is compromised. As data security is a key priority area, they conduct periodic security audits to ensure their customers' safety.
If you have an account at any of the above-listed sites, the users are recommended to change your passwords to a strong, unique one used only at that site.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?