One of the largest data leaks ever sees info on 1.5 billion people leaked online

1.5 billion exposed records have been discovered by researchers
Records are primarily from Chinese social media and ecommerce platforms
Victims are at risk of identity theft and social engineering attacks

Researchers from CyberNews have discovered an unprotected server with ‘hundreds of millions’ of records, including brands from major brands such as Weibo and DiDi, amongst many others – with the total number of comprimised records potentially numbering 1.5 billion.

The compromised data included Personally Identifiable Information (PII) such as full names, email addresses, financial information, healthcare records, and phone numbers. The largest set of information was credited to QQ messenger, and the second largest was 504 million records credited to social media giant Weibo – although it’s likely these were from previous leaks.

The largest dataset with no known previous major leaks was from JD.com (Jingdong), a Chinese ecommerce firm, with the researchers discovering a staggering 142 million JD.com records in the instance.

No clear indication of ownership

Whilst some data was seemingly exposed in previous data leaks, much of the information was ‘undoubtedly’ compromised for the first time in this incident. This dataset is most likely a mix of known exposed information, and newly leaked data that was all collated into one (now closed) Elasticsearch server.

According to researchers, the server was exposed for ‘several months’ but was closed following multiple disclosure notices.

The exposed instance shows ‘no clear indication of its true ownership’, which researchers point out suggests there may be malicious intent behind the collation of such a ‘large and diverse’ dataset.

A wide dataset gives threat actors a broad scope to carry out targeted attacks like account hacking, sophisticated social engineering attacks, and identity theft.

Although the scale of the incident is enormous, it is potentially only the second data breach of this scale in recent memory, showing the need for greater protection for businesses everywhere.

https://cdn.mos.cms.futurecdn.net/pMfzLC5B5bDaupGWaa9DWN-1200-80.jpg

Source link

What is the release date and time for The Last of Us season 2 episode 7?

Developers aren’t thrilled about having to add AI into everything they build, study shows

These dangerous fake Google Chrome extensions spoof VPNs and YouTube

Quordle hints and answers for Saturday, May 24 (game #1216)

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Which Celebrity Styles Americans Copy Most in 2025: New Study

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

Johan Claesson ups stake in K3 Business Technology Group

Johnsonville will offer an 80 lb, 249-link variety pack of sausages, brats, and hot dogs

ActiveOps exec acquires shares under incentive plan

Republican tax bill would reduce income of poorest Americans, analysis shows

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

One of the largest data leaks ever sees info on 1.5 billion people leaked online

Johan Claesson ups stake in K3 Business Technology Group

What is the release date and time for The Last of Us season 2 episode 7?

Johnsonville will offer an 80 lb, 249-link variety pack of sausages, brats, and hot dogs

Developers aren’t thrilled about having to add AI into everything they build, study shows