Fresh Zacks Data Leak Exposes Personal Records of Over 8 Million People


June 13, 2023

Promo Protect all your devices, without slowing them down.
Free 30-day trial
Fresh Zacks Data Leak Exposes Personal Records of Over 8 Million People

A data leak containing 8.8 million records belonging to Zacks Investment Research people was recently dumped on a newly emerged hacking forum, according to Troy Hunt, creator of the Have I Been Pwned platform.

In December 2022, the US-based stock and mutual fund research company disclosed a data breach that exposed the personal information of almost 1 million people after threat actors gained unauthorized access to its network.

However, according to Hunt, the newly surfaced data was dated May 2020, well before the previous breach the company reported.

Potentially compromised information includes customers’ names, email addresses, user names, unsalted SHA256 passwords, addresses and phone numbers.

The researcher noted that no credit card and bank account details were included in the data dump posted on the Dark Web forum on June 6, 2023.

What should users do?

Although Zacks had initiated a mandatory password reset for people impacted by the security event announced in late December 2022, the freshly leaked database containing 8.8 million user records will undoubtedly appeal to threat actors.

The data could be abused to conduct targeted phishing and credential-stuffing against victims, and users are advised to reset passwords (both on the Zacks platform and other online accounts with the same login credentials), and carefully screen all unsolicited correspondence to avoid financial and security repercussions.

Want to stay on top of data breaches and security threats, and easily manage your information to block malicious actors who may exploit your identity?

With Bitdefender Identity Theft Protection you can easily protect against identity crimes that may ruin your financial wellbeing with:

·       24/7 identity monitoring to detect if your personally identifiable information (PII) is on the dark web, change-of address requests, attempts to take over accounts and court records that may show crimes falsely reported in your name

·       An easy way to view your credit score or order a credit freeze in case of compromise

·       Identity restoration services with a 100% success rate and access to your own dedicated resolution specialist

·       Up to $2 million identity theft recovery plan plus many other perks, depending on your chosen plan




Alina is a history buff passionate about cybersecurity and anything sci-fi, advocating Bitdefender technologies and solutions. She spends most of her time between her two feline friends and traveling.

View all posts

You might also like