Alibaba data breach exposes 1.1 billion pieces of data

Usernames and mobile numbers were included in the breach which affected Taobao, Alibaba’s shopping website

Alibaba’s shopping website Taobao was trawled for 8 months which resulted in over 1.1 billion pieces of user information being collected by a software developer.

The unnamed developer used web-crawling software in November 2019 and gathered information including user IDs, mobile-phone numbers and customer comments, as reported by the Wall Street Journal.

A criminal verdict was published by the People's Court of Suiyang District stating that two criminals, the developer and his employer, were involved in the crawl, as reported by local media 163.com last week. 

When Alibaba noticed the data leaks from its shopping website, which occurred after several months, it informed the authorities, the court statement detailed.

Following a police investigation, the report suggests the two individuals were sentenced to imprisonment for over three years each and fined 100,000 yuan (£11,077)  and 350,000 yuan (£38,771) for "infringing on citizens' personal information."

IT Pro has contacted Alibaba for a statement.

In May, Air India stated that a cyber attack on the systems of its data processor affected around 4.5 million of its customers around the world. The breach involved personal information registered over a ten year period and exposed name, data of birth, credit card data, passport information and more.

Earlier this week, the US subsidiary of the Volkswagen Group suffered a data breach that affected 3.3 million customers after a vendor left unsecured data exposed on the internet. The company believes the data was unsecured at some point between August 2019 and May 2021 and an unauthorised third party may have obtained certain customer information. The data exposed included customers’ names, email addresses and phone numbers.

Featured Resources

Preparing for AI-enabled cyber attacks

MIT technology review insights

Download now

Cloud storage performance analysis

Storage performance and value of the IONOS cloud Compute Engine

Download now

The Forrester Wave: Top security analytics platforms

The 11 providers that matter most and how they stack up

Download now

Harness data to reinvent your organisation

Build a data strategy for the next wave of cloud innovation

Download now

Recommended

Senate report slams agencies for poor cyber security
cyber security

Senate report slams agencies for poor cyber security

3 Aug 2021
Huawei to invest $100 million in APAC startups
startups

Huawei to invest $100 million in APAC startups

3 Aug 2021
Square to acquire Afterpay for $29 billion
mergers and acquisitions

Square to acquire Afterpay for $29 billion

2 Aug 2021
Tesla Megapack goes up in flames at Australian battery site
Hardware

Tesla Megapack goes up in flames at Australian battery site

30 Jul 2021

Most Popular

RMIT to be first Australian university to implement AWS supercomputing facility
high-performance computing (HPC)

RMIT to be first Australian university to implement AWS supercomputing facility

28 Jul 2021
Zyxel USG Flex 200 review: A timely and effective solution
Security

Zyxel USG Flex 200 review: A timely and effective solution

28 Jul 2021
Preparing for AI-enabled cyber attacks
Whitepaper

Preparing for AI-enabled cyber attacks

22 Jul 2021