Brother
Professional
- Messages
- 2,590
- Reaction score
- 539
- Points
- 113
Who is behind the abuse of users confidential information?
Cybernews specialists found that the personal data of users of nine cryptocurrency exchanges was disclosed and available online for more than two months. The incident affected more than 500,000 customers.
Researchers have confirmed data leaks on the following platforms:
Although the affected exchanges are not large, the scale of the leak is significant. The data collected includes sensitive information:
In total, the leak revealed more than 615,000 payment requests and more than 28,000 withdrawal requests.
Given that cryptocurrency exchanges are often used to hide illegal transactions, this leak will be useful for law enforcement agencies and cybersecurity researchers around the world.
Sample data
The leak was initially discovered on October 10, and the server where it was located is still available at the moment. Although the server's IP address was active, all data was already destroyed by the malicious script. It is unclear who is behind the leak and subsequent destruction of the data.
The researchers point out that the data was stored using MongoDB, a database management software, but an incorrect configuration allowed third parties to gain unlimited access and disclose the data.
Users of affected platforms are advised to be on their guard. The leak makes them vulnerable to fraudulent activities such as identity theft, phishing and other social engineering attacks, as well as unauthorized transactions. You must immediately change your reusable passwords and enable multi-factor authentication.
Cybernews specialists found that the personal data of users of nine cryptocurrency exchanges was disclosed and available online for more than two months. The incident affected more than 500,000 customers.
Researchers have confirmed data leaks on the following platforms:
- Sova[.]gg
- coinstart[.]cc
- pocket-exchange[.]com
- onemoment[.]cc
- cripta[.]cc
- metka[.]cc
- alt-coin[.]cc
- ferma[.]cc
- in-to[.]cc
Although the affected exchanges are not large, the scale of the leak is significant. The data collected includes sensitive information:
- full user names;
- номера кредитных карт;
- email-адреса;
- IP-адреса;
- суммы для запросов на оплату или снятие средств;
- various authentication data (for example, user agent).
In total, the leak revealed more than 615,000 payment requests and more than 28,000 withdrawal requests.
Given that cryptocurrency exchanges are often used to hide illegal transactions, this leak will be useful for law enforcement agencies and cybersecurity researchers around the world.
Sample data
The leak was initially discovered on October 10, and the server where it was located is still available at the moment. Although the server's IP address was active, all data was already destroyed by the malicious script. It is unclear who is behind the leak and subsequent destruction of the data.
The researchers point out that the data was stored using MongoDB, a database management software, but an incorrect configuration allowed third parties to gain unlimited access and disclose the data.
Users of affected platforms are advised to be on their guard. The leak makes them vulnerable to fraudulent activities such as identity theft, phishing and other social engineering attacks, as well as unauthorized transactions. You must immediately change your reusable passwords and enable multi-factor authentication.
