Weekly Summary

SPOTLIGHT, VULNERABILITY CHAT & PRIVACY HEADLINES
Share this analysis
Mexico City Breach Exposure Monitoring

Threat actors exfiltrate a large SQL database of COVID records.

20 March 2023
BREACHAWARE HQ

A total of 20 breaches were found and analysed resulting in 6,204,700 leaked accounts containing a total of 19 different data types. The breaches found publicly and freely available included SberSpasibo, HDFC Bank, Stealer - Mixed Logs 0253, Okanagan College and Stealer - RedLine 0260. Sign in to view the full BreachAware Breach Index which includes, where available, reference articles relating to each breach.

SPOTLIGHT

An interesting breach that caught our eye this week involved a massive multimedia corporation based in Mexico City. The company was founded 50 years ago and now broadcasts on television and radio and has its own streaming network. Unfortunately, threat actors managed to exfiltrate a large SQL database of COVID records from their entire work force, which is around 42K employees. The threat actors commented on the breach data, saying "we ate Mac n’ Cheese while hacking these telecoms." Not the healthiest of meals for being sat in front of the screen all evening.

Next, a threat actor managed to gain access to an active directory of a college in British Columbia. Kudos to them, when you visit the college website, they actually have a drop-down box at the top of the page informing the reader of a cyber incident. What’s more, they have a detailed account of what happened and what to do as well as a Q&A section with what to look for. There is even an offer for students and staff to subscribe for two years to premium credit monitoring services. We almost fell off our chairs reading this. What a great example to follow, we'd go as far as saying exemplary response.

And finally a word on Stealer Malware Logs that you may have noticed becoming more prominent each week. Let's just say they are a treasure trove of personal information and continue to be on the rise, don't take our word for it, just search the term on your preferred engine.

Breach Exposure Monitoring | Dark Web Monitoring + Surface Web Monitoring
Scan Any Domain for Free https://breachaware.com/scan

DATA CATEGORIES DISCOVERED

Socia-Demographic Data, Technical Data, Contact Data, Financial Data, Locational Data, Special Category, Usage Data, Documentary Data.

  • Key Statistics
  • Breaches Discovered
    0
  • ACCOUNTS DISCOVERED
    0
  • DATA TYPES DISCOVERED
    0