Security News > 2023 > October > D-Link clears up 'exaggerations' around data breach
On October 1, word of a data breach spread after a post on a hacking forum claimed to be selling 3 million lines of customer information as well as D-View source code for a one-time $500 fee.
D-Link's public disclosure confirmed it became aware of the incident on October 2 and with the help of investigators called in from Trend Micro, the company determined the actual number of stolen records to be around the 700 mark - substantially off the previously advertised total.
"The data was used for registration purposes back then. So far, no evidence suggests the archaic data contained any user IDs or financial information," it said.
D-Link also believes that some of the data included in the leak, such as last login timestamps, had been manipulated to make the records seem more recent than they actually were.
What isn't addressed in D-Link's extensive disclosure is the allegations made by the cybercriminals that the stolen data included details on Taiwan government officials and D-Link staff.
The Register contacted D-Link for clarification but it did not respond at the time of publication.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/10/18/dlink_debunks_overblown_data_breach/
Related news
- Free, France’s second largest ISP, confirms data breach after leak (source)
- Interbank confirms data breach following failed extortion, data leak (source)
- How to Effectively Manage a Data Breach (source)
- Amazon confirms employee data breach after vendor hack (source)
- HIBP notifies 57 million people of Hot Topic data breach (source)
- US space tech giant Maxar discloses employee data breach (source)
- Fintech giant Finastra investigates data breach after SFTP hack (source)
- Bologna FC confirms data breach after RansomHub ransomware attack (source)
- Rhode Island confirms data breach after Brain Cipher ransomware attack (source)
- Texas Tech University System data breach impacts 1.4 million patients (source)