Weekly Comments

12 - 19 February 2019

A hacker known as Gnosticplayers has released a third round of stolen accounts for sale in Dream Market.
A hacker known as Gnosticplayers has released a third round of stolen accounts for sale in Dream Market. The latest offering, at a total estimated price of US$10,000, contains credentials for more than 92 million accounts taken from nine websites, including the popular GIF hosting platform Gfycat. The latest release of stolen accounts shows that many data breaches are either undetected or not reported. None of the affected companies listed in the third round has reported a breach in recent months but they may be forced to acknowledge their security lapse following the exposure. Gnosticplayers previously released 617 million accounts from 16 compromised websites for around US$20,000 as well as 127 million accounts from eight websites for US$14,500. Out of all the affected companies, online dating app Coffee Meets Bagel, home improvement site Houzz, photo-sharing service 500px, programming education site DataCamp, and online art gallery Artsy have confirmed the data breaches. 

References:
[1] Over 92 Million New Accounts Up for Sale from More Unreported Breaches<hxxps:></hxxps:>
 
 

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Solutioning

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence