Security News > 2020 > July > 133m records for sale as fruits of data breach spree keep raining down

Bleeping Computer is in touch with the data breach broker: a "Known and reputable" broker who's selling databases, all of which contain different data types but all of which include usernames and hashed passwords.

Home Chef, a meal delivery service, confirmed a data breach two weeks after a hacker group named Shiny Hunters listed a database of 8 million customer records on a dark web marketplace.

Shiny Hunters was the same group that claimed to be selling Zoosk's records - along with nine other companies' records, for a total of 73 million user records - in May. For its part, Minted, a marketplace for independent artists, in late May confirmed that it had suffered a data breach earlier that month - confirmation that came after a hacker sold a database containing 5 million user records on a dark web marketplace.

Data breach monitoring and cybersecurity intelligence firm Under the Breach discovered that a hacker was offering the account information for 15 million users of Tokopedia - which is Indonesia's largest online store - on a hacker forum for as little as USD $5,000.

In sum: as Wired notes, during the first few weeks of May, the hacking group went on a data breach spree, hawking close to 200 million stolen records from over a dozen companies.

News URL

https://nakedsecurity.sophos.com/2020/07/02/133m-records-for-sale-as-fruits-of-data-breach-spree-keep-raining-down/