Security News > 2021 > April > MangaDex discloses data breach after stolen database shared online
Manga scanlation site MangaDex disclosed a data breach last week after learning that the site's user database was privately circulating among threat actors.
In March, MangaDex was hacked, and a threat actor claimed to have stolen the site's source code and its database, which they said had not been published anywhere.
After a data breach, attackers commonly sell the downloaded database in private sales with other threat actors who use the data in their own attacks, such as phishing and credential stuffing attacks.
After analyzing this publicly shared database, the data appears to be from the data breach of the Xsplit live streaming software in 2013 and it not the MangaDex database.
Troy Hunt, who was sent the legitimate MangaDex database and added it to HaveIBeenPwned, has told BleepingComputer that he believes the data is not widely circulated at this time.
If you have an account at MangaDex and are concerned your information is part of the breach, you can now check on the Have I Been Pwned data breach notification site.
News URL
Related news
- Free, France’s second largest ISP, confirms data breach after leak (source)
- Interbank confirms data breach following failed extortion, data leak (source)
- How to Effectively Manage a Data Breach (source)
- Amazon confirms employee data breach after vendor hack (source)
- HIBP notifies 57 million people of Hot Topic data breach (source)
- US space tech giant Maxar discloses employee data breach (source)
- Fintech giant Finastra investigates data breach after SFTP hack (source)
- Bologna FC confirms data breach after RansomHub ransomware attack (source)
- Rhode Island confirms data breach after Brain Cipher ransomware attack (source)
- Texas Tech University System data breach impacts 1.4 million patients (source)