Security News > 2023 > October > D-Link clears up 'exaggerations' around data breach

On October 1, word of a data breach spread after a post on a hacking forum claimed to be selling 3 million lines of customer information as well as D-View source code for a one-time $500 fee.

D-Link's public disclosure confirmed it became aware of the incident on October 2 and with the help of investigators called in from Trend Micro, the company determined the actual number of stolen records to be around the 700 mark - substantially off the previously advertised total.

"The data was used for registration purposes back then. So far, no evidence suggests the archaic data contained any user IDs or financial information," it said.

D-Link also believes that some of the data included in the leak, such as last login timestamps, had been manipulated to make the records seem more recent than they actually were.

What isn't addressed in D-Link's extensive disclosure is the allegations made by the cybercriminals that the stolen data included details on Taiwan government officials and D-Link staff.

The Register contacted D-Link for clarification but it did not respond at the time of publication.

News URL

https://go.theregister.com/feed/www.theregister.com/2023/10/18/dlink_debunks_overblown_data_breach/