Weekly Summary

SPOTLIGHT, VULNERABILITY CHAT & PRIVACY HEADLINES
Share this analysis
India Breach Exposure Monitoring

Bank customers complain of phishing attacks via Twitter.

13 March 2023
BREACHAWARE HQ

A total of 11 breaches were found and analysed resulting in 9,356,800 leaked accounts containing a total of 17 different data types. The breaches found publicly and freely available included US Gamblers, Zen Mobile, Arteza, Stealer - Mixed Logs 0250 and Mobile Legends: Bang Bang. Sign in to view the full BreachAware Breach Index which includes, where available, reference articles relating to each breach.

SPOTLIGHT

One of India's leading banks has had a large data breach posted to a popular hacking forum. The bank in question is one of India's oldest banks, the bank commented with "We wish to state that there is no data leak at ***** Bank and our systems have not been breached or accessed in any unauthorised manner."

However, customers have complained of phishing attacks and have taken to twitter to share their displeasure. What's more concerning than a bunch of dodgy emails being sent to the bank's customers is that some of the users are sharing screenshots from the bank's app displaying what looks like phishing popping up on it. The hackers have, by the looks of it, gained some back-end access to the app.

Unfortunately, those users who have taken to twitter may have interacted with another bad actor because a twitter account with the bank's username (with a slight difference at the end) that joined several days ago has been engaging with users regarding complaints about the service. Is this a well planned operation, or is it the result of a huge data breach being posted online and a bit of a free for all on the bank customers?

In other news, a proxy provider that went offline a while ago has had what seems like a lot of SQL databases exported and dumped publicly online. Various sensitive user information is included in the data; that could be primarily useful for law enforcement purposes.

And finally a site calling itself the best guide for sports and casino gambling in the US has had a huge section of there user base dumped online. The website contains various tips and tricks for a variety of bets.

Breach Exposure Monitoring | Dark Web Monitoring + Surface Web Monitoring
Scan Any Domain for Free https://breachaware.com/scan

DATA CATEGORIES DISCOVERED

Contact Data, Technical Data, Financial Data, Usage Data, Socia-Demographic Data, Special Category, Documentary Data.

  • Key Statistics
  • Breaches Discovered
    0
  • ACCOUNTS DISCOVERED
    0
  • DATA TYPES DISCOVERED
    0