The Dark Web
A hacker going by the name of Gnosticplayers is selling millions of users’ data on The Dark Web. The hacker is selling each database individually on Dream Market, a well-known online darknet market. The current total stands at roughly 840 million records.
Gnosticplayers has already put close to 750 million records from 24 hacked sites up for sale and this weekend struck again, with a further 8 sites, which amounts to an additional 91 million user records. The stolen information mainly consists of account holders’ names, email addresses and passwords. Targeted businesses include MyFitnessPal, 500px, Coffee Meets Bagel, Houzz and Roll20.
Little is known about the hacker, and it remains unclear exactly how these sites were hacked. It is thought that the hacker aimed to sell over one billion user records, to then disappear with all of the earnings.
Two affected sites, GfyCat and ClassPass, have reportedly started investigations into how the breach happened. GfyCat has commented that their account databases are strongly encrypted, so no plain text passwords would be revealed in the compromised data.
Cybersecurity is crucial in the case of potential hacks such as the Gnosticplayers scandal. Nearly half of all UK businesses reported a cyber-breach or attack in the past 12 months. It is essential to protect your business applications, computer-based equipment and information from unintended or unauthorised access.
The security of your data is left in the hands of the company that is handling it. If you are a user of any of the listed services, change your password immediately. If you use that password on more than one site (which you shouldn’t), change that too. Use two-factor authentication and password managers where possible – do everything that you can to protect your personal data online.