Man
Professional
- Messages
- 3,108
- Reaction score
- 673
- Points
- 113
Hacker KryptonZambie staged a black Friday on a cybercriminal forum.
More than 183 million records with people's contact details and work details were stolen from a data broker and put up for sale on the dark web. A seller with the nickname KryptonZambie put up for sale data for $6000 on one of the forums for cybercriminals. As a sample, potential buyers are offered 100,000 records. According to the seller, the leak contains corporate email addresses, physical addresses, phone numbers, employer names, job titles, as well as links to LinkedIn and other social media profiles.
The information is believed to have been collected from Pure Incubation, now known as DemandScience. The company confirmed that it is aware of the sale of its data and explained that the leaked information represents business contacts that are already in the public domain. According to DemandScience, the company only processes public business contacts and does not store personal data such as passwords, home addresses or other sensitive information.
The company also assures that the data leak was not related to the compromise of systems. At the beginning of the year, the company learned about a post on a hacker forum claiming that data from outdated Pure Incubation systems had been stolen. However, the investigation did not reveal any hacking of the infrastructure. Nevertheless, the company admits the possibility of leakage of outdated data through one of the contractors or partners, but there is no direct evidence of this.
DemandScience collects and sells business contacts for marketing campaigns. In fact, it is a data broker that specializes in collecting identifiers from open sources and then selling them to companies for targeting in advertising.
The data breach tracking resource Have I Been Pwned (HIBP) confirmed the discovery of the incident and added the leak to its registry. According to HIBP, the leak affected at least 122 million unique email addresses previously collected by Pure Incubation. HIBP founder Troy Hunt also examined the data and found his own contacts, including old emails and incorrect job titles. Hunt stated that one of the victims of the leak contacted DemandScience and was informed that the data leak occurred from a system that was decommissioned 2 years ago.
Screenshot of the data selling post and sample download link (@H4ckManac)
HackManac also drew attention to the leak, posting a screenshot of a post from KryptonZambie, which claims that 183.7 million records are up for sale.
Source
More than 183 million records with people's contact details and work details were stolen from a data broker and put up for sale on the dark web. A seller with the nickname KryptonZambie put up for sale data for $6000 on one of the forums for cybercriminals. As a sample, potential buyers are offered 100,000 records. According to the seller, the leak contains corporate email addresses, physical addresses, phone numbers, employer names, job titles, as well as links to LinkedIn and other social media profiles.
The information is believed to have been collected from Pure Incubation, now known as DemandScience. The company confirmed that it is aware of the sale of its data and explained that the leaked information represents business contacts that are already in the public domain. According to DemandScience, the company only processes public business contacts and does not store personal data such as passwords, home addresses or other sensitive information.
The company also assures that the data leak was not related to the compromise of systems. At the beginning of the year, the company learned about a post on a hacker forum claiming that data from outdated Pure Incubation systems had been stolen. However, the investigation did not reveal any hacking of the infrastructure. Nevertheless, the company admits the possibility of leakage of outdated data through one of the contractors or partners, but there is no direct evidence of this.
DemandScience collects and sells business contacts for marketing campaigns. In fact, it is a data broker that specializes in collecting identifiers from open sources and then selling them to companies for targeting in advertising.
The data breach tracking resource Have I Been Pwned (HIBP) confirmed the discovery of the incident and added the leak to its registry. According to HIBP, the leak affected at least 122 million unique email addresses previously collected by Pure Incubation. HIBP founder Troy Hunt also examined the data and found his own contacts, including old emails and incorrect job titles. Hunt stated that one of the victims of the leak contacted DemandScience and was informed that the data leak occurred from a system that was decommissioned 2 years ago.
Screenshot of the data selling post and sample download link (@H4ckManac)
HackManac also drew attention to the leak, posting a screenshot of a post from KryptonZambie, which claims that 183.7 million records are up for sale.
Source
