Nvidia fall victim to Lapsus$.

A total of 13 breaches were found and analysed resulting in 1,645,202 leaked accounts containing a total of 12 different data types. The breaches found publicly and freely available included Foto Strana, Text.ru, Coaster Fuel, Russian Federal Property Management Agency and Samsung Electronics Company. Sign in to view the full BreachAware Breach Index which includes, where available, reference articles relating to each breach.

SPOTLIGHT

We are discovering some interesting breaches during this tense period in the world.

An influx of Russian domains being breached and leaked online is no surprise to us. The cyber gang Lapsus$ took the internet by storm after their cyber attack on Samsung, which leaked 180 GB of data, the team are analysing the data at the moment. They plan to release the Vodafone code later on tonight (14th March).

America's biggest chip manufacturer, Nvidia, also fell victim to Lapsus$, with part of their business having to be taken off-line. Sample code was dumped but our research team believe the actual number of credentials reported in the media is exaggerated, that does not detract away from the issue that Nvidia has compromised credentials now publicly available.

No surprise, we are seeing more .ru domains compromised ranging from IT freelancing companies to food delivery services. Do you use this kind of service to buy food for employees? The breach exposed device information, mobile number and IP address along with the standard compromised data types.

Another interesting leak is from an ISP provider in Palestine. It is a small leak, but any leak from an ISP provider (Internet Service Provider) is something to be avoided. It was an SQL dump posted to an underground forum, discovered by one of our researchers. Finally, the trend of clothing retailers, gaming websites and marketing (lead generation) breaches continue.