1 min read

Hacker Sells 620 Million Customer Details on Dark Web for $20k in Bitcoin

Luana PASCU

February 25, 2019

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Hacker Sells 620 Million Customer Details on Dark Web for $20k in Bitcoin

A single seller is offering approximately 620 million stolen customer details  on the dark, according to The Register, which says it has been in touch with the seller and the database is genuine. The hacker claims the data was collected in 2018 through remote-code execution attacks after compromising vulnerabilities in web applications.

The account details were stolen following 16 high-profile data breaches including those of MyFitnessPal (151 million), MyHeritage (92 million), EyeEm (22 million) and 500px (15 million). All are for sale at a total price of almost $20,000 in bitcoin. The seller claims the a Dream Market customer has already bought the database.

Here”s the complete list of compromised websites:

  • Dubsmash (162 million)
  • MyFitnessPal (151 million)
  • MyHeritage (92 million)
  • ShareThis (41 million)
  • HauteLook (28 million)
  • Animoto (25 million)
  • EyeEm (22 million)
  • 8fit (20 million)
  • Whitepages (18 million)
  • Fotolog (16 million)
  • 500px (15 million)
  • Armor Games (11 million)
  • BookMate (8 million)
  • CoffeeMeetsBagel (6 million)
  • Artsy (1 million)
  • DataCamp (700,000)

The stolen data contains information of interest to spammers and can be used for credential stuffing. This mostly includes names, emails and passwords, occasional personal details, location and social media authentication. No bank details appear to have been compromised. The stolen passwords are hashed, so hackers need to crack them before they use them. Most exposed are people who use weak passwords that can be easily decoded, and reuse them for multiple accounts.

Some of the websites came forward as soon as they were hacked, informed their customers and reset account passwords. In an operation that allegedly goes back to 2012, the seller claims to have 20 databases, but some will not be released online and will instead be kept for private use.

“Security is just an illusion,” the hacker said to The Register. “I started hacking a long time ago. I’m just a tool used by the system. We all know measures are taken to prevent cyberattacks, but with these upcoming dumps, I’ll make hacking easier than ever.”

tags


Author



Right now

Top posts

The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read
Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

October 22, 2021

2 min read
Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

October 20, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Common Credentials Criminals Use in IoT Dictionary Attacks Revealed Common Credentials Criminals Use in IoT Dictionary Attacks Revealed
Silviu STAHIE

November 30, 2021

3 min read
Interpol Busts 1,000 Cyber Crooks and Recovers $27M in Massive Fraud Crackdown Interpol Busts 1,000 Cyber Crooks and Recovers $27M in Massive Fraud Crackdown
Filip TRUȚĂ

November 29, 2021

2 min read
Social media firms will be forced to unmask online trolls, says Australia Social media firms will be forced to unmask online trolls, says Australia
Graham CLULEY

November 29, 2021

2 min read