Security News > 2021 > April > MangaDex discloses data breach after stolen database shared online
Manga scanlation site MangaDex disclosed a data breach last week after learning that the site's user database was privately circulating among threat actors.
In March, MangaDex was hacked, and a threat actor claimed to have stolen the site's source code and its database, which they said had not been published anywhere.
After a data breach, attackers commonly sell the downloaded database in private sales with other threat actors who use the data in their own attacks, such as phishing and credential stuffing attacks.
After analyzing this publicly shared database, the data appears to be from the data breach of the Xsplit live streaming software in 2013 and it not the MangaDex database.
Troy Hunt, who was sent the legitimate MangaDex database and added it to HaveIBeenPwned, has told BleepingComputer that he believes the data is not widely circulated at this time.
If you have an account at MangaDex and are concerned your information is part of the breach, you can now check on the Have I Been Pwned data breach notification site.
News URL
Related news
- Rhode Island confirms data breach after Brain Cipher ransomware attack (source)
- Texas Tech University System data breach impacts 1.4 million patients (source)
- Ireland fines Meta $264 million over 2018 Facebook data breach (source)
- New fake Ledger data breach emails try to steal crypto wallets (source)
- Meta Fined €251 Million for 2018 Data Breach Impacting 29 Million Accounts (source)
- 46% of financial institutions had a data breach in the past 24 months (source)
- UN aviation agency investigating possible data breach (source)
- Washington state sues T-Mobile over 2021 data breach security failures (source)
- UN aviation agency confirms recruitment database security breach (source)
- Largest US addiction treatment provider notifies patients of data breach (source)