Shiny Hunters list 73.2 million user records on the dark web

Group reportedly has ties to hacking group Gnosticplayers

Cyber criminal in a hoodie holding a laptop

Members of the Shiny Hunters hacking group have allegedly compromised 73.2 million user records from over 11 companies worldwide.

These hackers appear to be a part of the same group behind the recent Tokopedia data breach that exposed 91 million user records and listed them for sale at $5,000. 

Emboldened by the profits from the Tokopedia sale, the Shiny Hunters group is now listing the databases of 10 more companies for sale on the dark web.

The 10 databases hold a total of 73.2 million user records. The hacking group has the databases listed for sale at a combined $18,000, though Shiny Hunters is willing to sell them separately for $500-$3,500 each.

The databases include:

  • Zoosk (30 million user records, priced at $500)
  • Chatbooks (15 million user records, priced at $3,500)
  • StyleShare (6 million user records, priced at $2,700)
  • Home Chef (8 million user records, priced at $2,500)
  • Minted (5 million user records, priced at $2,500)
  • Chronicle of Higher Education (3 million user records, priced at $1,500)
  • GGuMim (2 million user records, priced at $1,300)
  • Mindful (2 million user records, priced at $1,300)
  • Bhinneka (1.2 million user records, priced at $1,200)
  • StarTribune (1 million user records, priced at $1,100)

While the authenticity of some of the databases haven’t been verified, sources in the threat intel community believe Shiny Hunters is a legitimate threat actor. Many also believe the group may have ties to Gnosticplayers, which has sold more than 1 billion user credentials on dark web marketplaces and operated in a nearly identical pattern as Shiny Hunters.

Those impacted by Shiny Hunters’ exploits have begun to come forward. Chatbooks recently confirmed the breach on its website, sharing that no financial data was exposed during Shiny Hunters’ exploits, but the stolen information included login information, including names, email addresses and password information. 

There have been several reports of hackers selling stolen information on the dark web in the last few weeks. Security experts from Cyble recently found hackers selling upward of 267 million Facebook records for a paltry $623.

Cyble claims that these records contained information that would allow attackers to perform spear-phishing campaigns to steal user credentials.

Featured Resources

BCDR buyer's guide for MSPs

How to choose a business continuity and disaster recovery solution

Download now

The definitive guide to IT security

Protecting your MSP and your customers

Download now

Cost of a data breach report 2020

Find out what factors help mitigate breach costs

Download now

The complete guide to changing your phone system provider

Optimise your phone system for better business results

Download now

Recommended

TsuNAME vulnerability could enable DDoS attacks on major DNS servers
distributed denial of service (DDOS)

TsuNAME vulnerability could enable DDoS attacks on major DNS servers

7 May 2021
Security researchers take control of a Tesla via drone
ethical hacking

Security researchers take control of a Tesla via drone

5 May 2021
New report highlights the need for diversity in cyber security recruitment
cyber security

New report highlights the need for diversity in cyber security recruitment

28 Apr 2021
Hackers could abuse legitimate Windows AD FS to steal data
Microsoft Windows

Hackers could abuse legitimate Windows AD FS to steal data

28 Apr 2021

Most Popular

KPMG offers staff 'four-day fortnight' in hybrid work plans
flexible working

KPMG offers staff 'four-day fortnight' in hybrid work plans

6 May 2021
Dell patches vulnerability affecting hundreds of computer models worldwide
cyber security

Dell patches vulnerability affecting hundreds of computer models worldwide

5 May 2021
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

29 Apr 2021