Shiny Hunters list 73.2 million user records on the dark web

Group reportedly has ties to hacking group Gnosticplayers

Members of the Shiny Hunters hacking group have allegedly compromised 73.2 million user records from over 11 companies worldwide.

These hackers appear to be a part of the same group behind the recent Tokopedia data breach that exposed 91 million user records and listed them for sale at $5,000. 

Advertisement - Article continues below

Emboldened by the profits from the Tokopedia sale, the Shiny Hunters group is now listing the databases of 10 more companies for sale on the dark web.

The 10 databases hold a total of 73.2 million user records. The hacking group has the databases listed for sale at a combined $18,000, though Shiny Hunters is willing to sell them separately for $500-$3,500 each.

The databases include:

  • Zoosk (30 million user records, priced at $500)
  • Chatbooks (15 million user records, priced at $3,500)
  • StyleShare (6 million user records, priced at $2,700)
  • Home Chef (8 million user records, priced at $2,500)
  • Minted (5 million user records, priced at $2,500)
  • Chronicle of Higher Education (3 million user records, priced at $1,500)
  • GGuMim (2 million user records, priced at $1,300)
  • Mindful (2 million user records, priced at $1,300)
  • Bhinneka (1.2 million user records, priced at $1,200)
  • StarTribune (1 million user records, priced at $1,100)
Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

While the authenticity of some of the databases haven’t been verified, sources in the threat intel community believe Shiny Hunters is a legitimate threat actor. Many also believe the group may have ties to Gnosticplayers, which has sold more than 1 billion user credentials on dark web marketplaces and operated in a nearly identical pattern as Shiny Hunters.

Those impacted by Shiny Hunters’ exploits have begun to come forward. Chatbooks recently confirmed the breach on its website, sharing that no financial data was exposed during Shiny Hunters’ exploits, but the stolen information included login information, including names, email addresses and password information. 

There have been several reports of hackers selling stolen information on the dark web in the last few weeks. Security experts from Cyble recently found hackers selling upward of 267 million Facebook records for a paltry $623.

Cyble claims that these records contained information that would allow attackers to perform spear-phishing campaigns to steal user credentials.

Featured Resources

The case for a marketing content hub

Transform your digital marketing to deliver customer expectations

Download now

Fast, flexible and compliant e-signatures for global businesses

Be at the forefront of digital transformation with electronic signatures

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

IT faces new security challenges in the wake of COVID-19

Beat the crisis by learning how to secure your network

Download now
Advertisement

Recommended

Visit/security/phishing/355810/zloader-malware-returns-as-a-coronavirus-phishing-scam
phishing

ZLoader malware returns as a coronavirus phishing scam

27 May 2020
Visit/security/hacking/355806/anarchygrabber-hack-steals-discord-tokens-ids-and-passwords
hacking

AnarchyGrabber hack steals Discord tokens, IDs and passwords

27 May 2020
Visit/security/hacking/355801/scammers-using-coronavirus-contact-tracing-in-hacking-attempt
hacking

Scammers leverage contact-tracing in hacking attempt

27 May 2020
Visit/security/phishing/355793/gitlab-phishes-its-remote-employees-and-1-in-5-fell-for-it
phishing

GitLab phished its employees and 20% handed over credentials

26 May 2020

Most Popular

Visit/operating-systems/microsoft-windows/355812/microsoft-warns-against-installing-windows-10-may-2020
Microsoft Windows

Microsoft warns users not to install Windows 10's May update

28 May 2020
Visit/security/cyber-security/355797/microsoft-bans-trend-micros-rootkit-buster-from-windows-10
cyber security

Microsoft bans Trend Micro driver from Windows 10 for "cheating" hardware tests

27 May 2020
Visit/security/ransomware/355811/how-can-organisations-protect-themselves-from-nas-ransomware-attacks
ransomware

How can organisations protect themselves from NAS ransomware attacks?

28 May 2020