Yesterday, Leakbase, a website with a data breach notification, reported that someone allegedly hacked the Swachhata platform in India and stole 16 million user records. Cloudsek’s security researchers broke the news when they found a report that sample data containing personal information (PII), including email addresses, hashed passwords and user IDs, had been leaked. Earlier this week, Cloudsek’s consultants reported on an initiative in which 6 GB of compromised data from the Swachhata platform – India’s Ministry of Housing and Urban Affairs – was distributed through the popular file hosting platform. “Previously, [Leakbase] was known to provide reliable leaks of information and data from companies around the world,” CloudSEK wrote. “[Threat actors on the platform] often act for financial gain and sell on the Sunday Leakbase forums.” The platform was at the center of a massive data leak on Taringa, a Reddit-like social networking site for Spanish users, in 2017. In addition, CloudSEK said October that leakbase users often gain access to the admin panels and servers of various content management systems (CMS), which are allegedly taken without permission and sold for monetary gain. “This information can be combined for further sales as potential customers on cybercrime forums,” the company wrote. In October, security experts said the data could be harvested by threat actors to carry out phishing, smishing attacks and social engineering attacks.
- Next The Power of Cybersecurity Whitepapers: A Comprehensive Guide
- Previous Best Practices for Secure File Uploads
Hakkında
Kariyer başlangıcımdan bu zaman kadar Siber Güvenlik alanında gelişen/oluşan her şeye merak duymaktayım.
Bu süre zarfında, siber güvenlik ve startup ekosistemine destek olmak ve sektördeki gelişmelere katkıda bulunmak benim için önemli oldu. Deneyimlerimi, yazılarımda paylaşmayı bilgi ve görüşlerimi aktarmayı amaçlıyorum, böylece bu alanda büyümeye ve gelişmeye katkı sağlayabilirim.
Son Yazılar
- Enhancing Security Measures for Autonomous Drones: A Comprehensive Guide
- Enhancing Cybersecurity in the Hospitality Industry
- Protecting Your Business: Cybersecurity in Online Marketplaces
- Unlocking the Power of Penetration Testing in a Virtualized Environment
- Securing Embedded Systems in Automotive Technology
Arşiv
- November 2024
- October 2024
- September 2024
- August 2024
- July 2024
- June 2024
- May 2024
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- November 2021
Etiket Bulutu
Access Control
Advanced Persistent Threats
Anomaly Detection
API security
application whitelisting
authentication
best practices
Cloud Security
compliance
cybersecurity
Cyber Threats
data breaches
data encryption
data privacy
data protection
data security
email security
encryption
Endpoint Detection and Response
Ethical Hacking
Firmware Updates
Incident Response
Insider Threats
IoT security
machine learning
Malware
multi-factor authentication
Network Security
Network Segmentation
penetration testing
Phishing
phishing attacks
privacy
ransomware attacks
risk management
risk mitigation
secure coding
Security Controls
security measures
software security
Threat Detection
Threat Intelligence
threat modeling
vulnerability assessment
Zero Trust Architecture