93 Million User Records from 8 Data Breaches for Sale on the Dark Web
Last updated September 28, 2021
- Millions of poorly encrypted passwords and usernames are currently for sale on Dream Market.
- The eight databases correspond to eight breaches that were never disclosed to the users.
- The hacker is doing this for the money, and also to send a message to the US government.
Another week, another massive user credentials database is for sale on the dark web, unveiling previously undisclosed data breaches and replaying the same suggestions on the use of password managers. The new batch is for sale by a hacker named “Gnosticplayers”, known for previous user data bundles that contained the credentials of 620 million users. This time, the batch contains the data of about 93 million accounts, and are sold for what corresponds to about $9400 in BitCoin.
According to the ZDNet report, the hacker claims responsibility for the acquisition of the data, and not just for the sale. As he characteristically stated: “My two main goals are: -money – the downfall of American pigs”. However, the databases that are on sale do not correspond solely to US citizens, as accounts held by people from other parts of the world are also to be found in there. The reason why the hacker targets the US specifically is because the American government wants to sentence the arrested hacker George Duke-Cohan for the second time with 65 years in prison after he has already spent three years in a UK prison.
The eight databases that are on sale right now comprise the following:
- Legendas.tv – 3.86 million accounts including username, unencrypted password, email, and IP address
- Jobandtalent – 11 million accounts including user ID, encrypted password, full name, and IP address
- Onebip – 2.6 million accounts including user ID, name, email, unencrypted password, address, phone number, PayPal info, banking info, API key, login logs
- StoryBird – 4 million accounts including email, encrypted password and username
- StreetEasy – 1 million accounts including username, email, and encrypted password
- GfyCat – 8 million accounts including username, encrypted password, and email
- ClassPass – 1.5 million accounts including email, encrypted password, username, sex, country, and full name
- Pizap – 60.8 million accounts including the Facebook user ID, encrypted password and email address
source: zdnet.com
None of the online platforms mentioned above had informed their users of a data breach, but the leaks seem to be legit based on the initial analysis. Out of the eight databases, only that of the GfyCat uses strong enough encryption to make it harder for sniffers to use this data, while the rest seven, unfortunately, cannot claim the same. Considering that one breach occurred in 2015, another two in 2017, and the rest five in 2018, users cannot rely on the transparency that the platforms showcase on such incidents. The hacker has had their credentials for a long time, so using password managers and changing passwords frequently is the only way to go.
Are you using any of the eight platforms that constitute this new user data sale? Let us know in the comments below, and help us spread the word by sharing this story through our socials, on Facebook and Twitter.
Related
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular