Breach, Content

Report: Hackers Claim to Pilfer 34 Million Records from 17 Databases

Hackers are selling some 34 million user records held in databases they claim have been ripped off from 17 companies in data breaches earlier this year, a recent report said.

An ad in a dark web forum posted on October 28 offered the databases for sale, BleepingComputer said. The seller told Bleeping Computer that it was brokering the databases, wasn't responsible for the data breaches and declined to reveal how much they were worth on the open market. The seller reportedly refused to say how the sites had been cyber burgled.

According to BleepingComuter, stolen databases are usually sold in sales to private sites from $500 to $100,000.

Roughly 75 percent of the stolen records, which include user names, passwords, email addresses, personal credentials and more, come from six companies, with the largest haul at just over eight million records. The seller reportedly told BleepingComputer that the database belonging to Singapore-based RedMart, the best known of the affected companies, carries a price tag of $1,500.

Here’s a list of the compromised organizations and the number of records stolen: 8.1 million million 4.3 million 2.9 million 2.9 million 2.8 million 2.2 million 1.3 million
RedMart: 1.1 million 1 million 789,000 779,000 571,000 386,000 227,000 162,000 129,000

According to BleepingComputer, thirteen of the 17 breached companies have stolen email accounts that map to the organization. None had reported a data breach of stolen records until RedMart and confirmed the break-ins to BleepingComputer in the last few days.

BleepingComputer advises users that visit one or more of the affected sites to assume the site has been breached and change their passwords. In addition, if users sign on with the same password at multiple sites, change it to a secure one used only for that site.

D. Howard Kass

D. Howard Kass is a contributing editor to MSSP Alert. He brings a career in journalism and market research to the role. He has served as CRN News Editor, Dataquest Channel Analyst, and West Coast Senior Contributing Editor at Channelnomics. As the CEO of The Viewpoint Group, he led groundbreaking market research.