Security News > 2022 > November > Whoosh confirms data breach after hackers sell 7.2M user records
The Russian scooter-sharing service Whoosh has confirmed a data breach after hackers started to sell a database containing the details of 7.2 million customers on a hacking forum.
On Friday, a threat actor began selling the stolen data on a hacking forum, which allegedly contains promotion codes that can be used to access the service for free, as well as partial user identification and payment card data.
In a new statement shared with RIA Novosti today, Whoosh admits that there is a data leak and informs its user base they are working with law enforcement authorities to take all measures to stop the distribution of the data.
"The leak did not affect sensitive user data, such as account access, transaction information, or travel details," stated a Whoosh spokesperson.
The seller also claimed that the stolen data included 3,000,000 promo codes, which people can use to rent Whoosh scooters without paying.
In a separate sale of the data on Telegram, the threat actor claims it was stolen during a November 2022 attack on Whoosh.
News URL
Related news
- StreamElements discloses third-party data breach after hacker leaks data (source)
- PowerSchool previously hacked in August, months before data breach (source)
- Chinese Hackers Breach Juniper Networks Routers With Custom Backdoors and Rootkits (source)
- Live Ransomware Demo: See How Hackers Breach Networks and Demand a Ransom (source)
- Western Alliance Bank notifies 21,899 customers of data breach (source)
- Sperm donation giant California Cryobank warns of a data breach (source)
- Pennsylvania education union data breach hit 500,000 people (source)
- Oracle denies breach after hacker claims theft of 6 million data records (source)
- Chinese Hackers Breach Asian Telecom, Remain Undetected for Over 4 Years (source)
- Texas State Bar warns of data breach after INC ransomware claims attack (source)