Weekly Summary

SPOTLIGHT, VULNERABILITY CHAT & PRIVACY HEADLINES
Share this analysis

17,730,065 leaked accounts discovered by the BreachAware® Research Team last week.

21 November 2022

A total of 6 breaches were found and analysed resulting in 17,730,065 leaked accounts containing a total of 10 different data types. The breaches found publicly and freely available included Data Viper (URL Redirected), Biden Cash, Medibank, Lime Tray and LTEC. Sign in to view the full BreachAware Breach Index which includes, where available, reference articles relating to each breach.

SPOTLIGHT

Things are getting hot this week, with an online heating company recently hit by threat actors. The family run business has been trading since 1947, it's a shame to see a family businesses like this affected. Various types of data were in the breach, including hashed MD5 passwords, physical addresses and over 500,000 unique email addresses.

A manager at a crypto currency platform that is a "launchpad" for digital assets has leaked 4.5K customers' personal information. This was done supposedly for them being "bad actors". The company in question collects personal information as part of KYC (know your client). The data was originally dumped on Discord by the manager and now seen on several hacking forums.

A dubbing site for children where users can practice their English by dubbing over various popular children's films and series has suffered a data breach. A vulnerability in an AWS S3 bucket was open and threat actors quickly dumped over 152K users email addresses, usernames, and account information. We haven’t seen a disclosure by the company of the breach.

DATA CATEGORIES DISCOVERED

Contact Data, Technical Data, Socia-Demographic Data, Financial Data.

  • Key Statistics
  • Breaches Discovered
    0
  • ACCOUNTS DISCOVERED
    0
  • DATA TYPES DISCOVERED
    0