About 26 million login credentials, home addresses and phone numbers from users of various websites, including the Brazilian Estante Virtual, are selling on the dark web for over $ 19,000 in Bitcoin. The data was intercepted by hacker Gnosticplayers, known for finding breaches in website security and selling the data on the Dream Market, an illegal dark web information market.
READ: Millions of Internet passwords leak and go for sale; understand case
The intruder released in February more than 127 million credentials from services such as Dubsmash and MyHeritage for $ 54,000. The hacker justifies the action as a way to expose the fragility of websites, but the Virtual Bookshelf does not recognize that the platform has suffered a data leak.
Total 26.42 million password hits sites worldwide Photo: Pond5
Want to buy a cell phone, TV and other discounted products? Meet the Compare dnetc
In addition to Estante Virtual, the Brazilian website for selling new and used books, the 26.42 million entries are divided between GameSalad platforms, a game development service; LifeBear, routine organizer with to-do lists; YouthManual, Indonesian Career Site; Bukalapak, also an Indonesian online store and Coubic, is a scheduling service used by companies.
Estante Virtual issued a press release claiming that it did not identify any evidence of compromise of its data: "We have cleared the reports and have not identified any evidence of information leaks on the portal," the company said in a statement. According to the announcement on the Dream Market, this is the sale name, username, password, home address, e-mail address and telephone number of users of the website that reads Brazilian sebum.
In an interview with technology site ZDNet, Gnosticplayers explained that the motivation behind the decision to disclose the data that seeing this kind of lack of security in 2019 makes me angry. Although he has this stance, the hacker acknowledged that he has collected even more data from other companies and websites that, however, decided to give in to blackmail and pay for his information not to be sold on the dark web.
Have I Been Pwned warns if your login has been leaked on the web Photo: Reproduo / Paulo Alves
In note to dnetcVirtual Stand also clarified that "security is very important for Virtual Stand" and said it is "constantly improving access control systems and protecting user data on the site."
Other platforms affected by the incident notified users that they had been the target of actions that may have caused the leak. According to Gnosticplayers, the actions that yielded 26.42 million access data were obtained in attacks carried out in February this year.
It is important to adopt good security practices such as constantly changing passwords and avoiding using the same access pattern on all sites and services. If the password has been leaked, I need to immediately change the password used on the affected platform and avoid using it on other sites.
Another possible precaution is to check the Have I Been Pwned site if your data has been exposed. The site has a huge database of leaked passwords and episodes like what may have affected the Virtual Bookshelf. Just register your email on the site to be notified every time your address falls into any such leak.
I can't access my Facebook account; what to do? Ask questions on the dnetc forum.
What ransomware: five tips to protect yourself