Recently, in the course of our routine Darkweb monitoring, our researchers found an alleged leak of 500K+ records of C-level individuals on an active Russian-speaking forum.
The screenshot attached below showcases the post from the forum.
The image below showcases the recent post by the threat actor.
Upon analysis of the data, Cyble discovered that there are 500K+ lines of records containing prominent user profiles. The information contains email IDs, password hashes, addresses, etc.
At Cyble, we have promptly informed our clients about this alleged leak so that they can act on it. This leak is particularly important as it contains corporate email IDs. If the credentials are obtained by bad actors, there could be malicious use of the same in various ways such as business email compromise.
Cyble has been reporting these types of breaches to spread awareness about the risks associated with them.
We recommend people to:
- Never share personal information, including financial information over phone, email or SMSes.
- Use strong passwords and enforce multi-factor authentication wherever possible.
- Regularly monitor your financial transactions, and if you notice any suspicious activity, contact your bank immediately.
- Turn on the automatic software update feature on your computer, mobile and other connected devices wherever possible and pragmatic.
- Use a reputed anti-virus and Internet security software package on your connected devices including PC, laptop, and mobile.
- People who are concerned about their exposure in the Darkweb can register at AmiBreached.com to ascertain their exposure.
- Refrain from opening untrusted links and email attachments without verifying their authenticity.
Cyble is a global threat intelligence SaaS provider that helps enterprises protect themselves from cybercrimes and exposure in the darkweb. Cyble’s prime focus is to provide organizations with real-time visibility into their digital risk footprint. Backed by Y Combinator as part of the 2021 winter cohort, Cyble has also been recognized by Forbes as one of the top 20 Best Cybersecurity Startups To Watch In 2020. Headquartered in Alpharetta, Georgia, and with offices in Australia, Singapore, and India, Cyble has a global presence. To learn more about Cyble, visit www.cyble.com.