Cybercrime

Hacker Group Advertises Data From Multiple Fresh Breaches

A group of hackers has started to advertise on the dark web data allegedly stolen as a result of multiple recent breaches, including ones that affected Tokopedia, Styleshare, Minted, ChatBooks, and others.

Ionut Arghire

May 11, 2020

Known as “Shiny Hunters,” the group recently claimed responsibility for hacking Tokopedia, Indonesia’s largest online store, and claimed last week to have breached Microsoft’s GitHub account.

According to cyber intelligence firm Cyble, the same hackers have started selling multiple other databases containing what appears to be stolen user account data. The group is offering samples of data to prove the legitimacy of their claims.

Online marketplace of independent artists and designers Minted appears to have been breached by the hackers, with 5 million user accounts now offered for $2,500.

A database supposedly containing 6 million user accounts from South Korea-based real-time mobile and online platform Styleshare is also being offered, at $2,700.

Furthermore, the threat actor is selling 15 million Chatbooks user accounts for $3,500, as well as 1.2 million Bhinneka user accounts for $1,200, the security firm reveals.

The same threat actor is also selling a database supposedly containing user records stolen from Indian online learning platform Unacademy. Twenty million user accounts are being offered, for $2,000.

Other businesses appear to have been breached as well, with Shiny Hunters also offering for sale user accounts allegedly stolen from HomeChef, Ggumim, Mindful, StarTribune, The Chronicle Of Higher Education, and Zoosk, BleepingComputer reports.

Advertisement. Scroll to continue reading.

At the moment, the hackers are selling data allegedly stolen from 11 companies. The group has been adding new breaches to the list at a fast pace over the past week, and might continue to do so.

However, although some of the impacted organizations have publicly announced being breached, not all of the incidents have been confirmed yet.

Written By Ionut Arghire

Ionut Arghire is an international correspondent for SecurityWeek.

Latest News

Click to comment

CIEM Chat: How to Reduce Cloud Identity Risk

March 26, 2024

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Virtual Event: Ransomware Resilience & Recovery Summit

April 17, 2024

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Navigating Vendor Speak: A Security Practitioner’s Guide to Seeing Through the Jargon

As a security industry, we need to focus our energies on those professionals among us who know how to walk the walk. (Joshua Goldfarb)

SD-WAN: Don’t Build a Dead End, Prepare for Future-Proof Secure Networking

SD-WAN must be scalable, stable, secure, and fully operational to serve as a strong base for seamless modernization and progression to SASE. (Etay Maor)

You Against the World: The Offenders Dilemma

Foreign attackers have many more toolsets at their disposal, so we need to make sure we’re selective about our modeling, preparation and how we assess and fortify ourselves. (Tom Eston)

Why Intelligence Sharing Is Vital to Building a Robust Collective Cyber Defense Program

With automated, detailed, contextualized threat intelligence, organizations can better anticipate malicious activity and utilize intelligence to speed detection around proven attacks. (Marc Solomon)

Know Your Audience When Speaking to Security Practitioners

How can security practitioners make sense of the vendor landscape and separate those who talk a good game from those who can execute, perform, and solve real problems for enterprises? (Joshua Goldfarb)

Cybercrime

Comodo Forums Hacked via Recently Disclosed vBulletin Vulnerability

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Eduard KovacsOctober 1, 2019