Friday , June 28 2024
hacker

CloudSEK Report
750 million Indian mobile subscribers’ info for sale

infosecbulletin Thursday , February 1 2024 Data Breach

After the ‘MOAB’ data breach exposing 26 billion records, a new leak has occurred. It includes 1.8 terabytes of data from an “Indian Mobile Network Consumer Database” with personal information of 750 million people. This database is now being sold on the dark web.

CloudSEK, a cybersecurity firm, revealed a huge data leak exposing the personal information of 750 million individuals. This could lead to unprecedented cyberattacks and identity theft. CloudSEK recommends that telecom service providers and the government validate the data and find the loophole. This information was shared by Sparsh Kulshrestha from CloudSEK.

Threat actor exploit vulnerabilities in Oracle WebLogic Server

By infosecbulletin / Friday , June 28 2024
Researchers said, threat actor exploiting vulnerabilities in Oracle WebLogic Server, notably CVE-2017-3506 and CVE-2023-21839 to deploy cryptocurrency miners via PowerShell...
Read More
Threat actor exploit vulnerabilities in Oracle WebLogic Server

TeamViewer’s internal corporate IT environment faced “irregularity “

By infosecbulletin / Friday , June 28 2024
In a statement On Wednesday, 26 June 2024, team viewer said, "our security team detected an irregularity in TeamViewer’s internal...
Read More
TeamViewer’s internal corporate IT environment faced “irregularity “

GitLab issues Critical Patches to Address Multiple Vulnerabilities

By infosecbulletin / Friday , June 28 2024
GitLab, a platform for DevOps tools, released critical updates for its Community Edition (CE) and Enterprise Edition (EE). The new...
Read More
GitLab issues Critical Patches to Address Multiple Vulnerabilities

Multiple TP-Link Omada Vulnerabilities found

By infosecbulletin / Thursday , June 27 2024
Several vulnerabilities have been found in the TP-Link Omada system, which is a popular software-defined networking solution for small to...
Read More
Multiple TP-Link Omada Vulnerabilities found

Evolve Bank Confirms Data Breach, Customer Info Exposed

By infosecbulletin / Thursday , June 27 2024
Evolve Bank & Trust experienced a cybersecurity incident. The bank confirmed that cybercriminals obtained and shared customers' personal information on...
Read More
Evolve Bank Confirms Data Breach, Customer Info Exposed

BSNL Data Breach: Data worth 278GB leaked: Report claim

By infosecbulletin / Thursday , June 27 2024
According to digital risk management firm Athenian Technology, BSNL, India's state-owned telecom provider, suffered a significant data breach. A cybercriminal...
Read More
BSNL Data Breach: Data worth 278GB leaked: Report claim

Polyfill supply chain attack hits 100K+ web sites

By infosecbulletin / Wednesday , June 26 2024
Over 100,000 websites were compromised in a recent supply chain attack. The attack injected malware into the popular Polyfill JS...
Read More
Polyfill supply chain attack hits 100K+ web sites

Patch soon! 5 WordPress Plugins Backdoored

By infosecbulletin / Wednesday , June 26 2024
A hacker changed the code of five plugins on WordPress.org to add harmful PHP scripts that make new admin accounts...
Read More
Patch soon! 5 WordPress Plugins Backdoored

CISA issued two advisories for industrial control systems

By infosecbulletin / Wednesday , June 26 2024
CISA released two advisories about Industrial Control Systems (ICS) on June 25, 2024. The advisories contain important information about security...
Read More
CISA issued two advisories for industrial control systems

CISA confirms hackers possibly access CSAT January incident

By infosecbulletin / Tuesday , June 25 2024
CISA warns that its Chemical Security Assessment Tool (CSAT) was hacked in January. Hackers used a webshell on the Ivanti...
Read More
CISA confirms hackers possibly access CSAT January incident

He added, “This breach underscores the critical need for organizations and individuals to prioritize cybersecurity measures and remain vigilant.”

A cybersecurity company discovered a large data breach when a person called ‘CyboDevil’ advertised the data on the dark web. The database contains sensitive information like names, phone numbers, addresses, and Aadhaar details. 85% of the data is about Indian users and it affects all major telecom providers, according to CloudSEK researchers.

“The data, available for sale, is compressed to 600GB and uncompressed to 1.8TB, posing significant risks to both individuals and organisations. The threat actor has demanded $3,000 for the entire dataset,” the researchers said.

This leak could lead to financial loss, stress, reputational damage, and more cyber attacks, the researchers said.

Check Also

Data center

Indonesia’s National data center compromised, $8M ransom demand

Cyber attack compromised Indonesia’s national data center, causing trouble with immigration checks at airports. Attacker …

Leave a Reply

Your email address will not be published. Required fields are marked *

Mail: [email protected]
© Copyright 2024, All Rights Reserved InfoSecBulletin