Database leak exposed mass credential stuffing against Spotify users

25 November 2020

On July 3, VpnMentor’s research team led by Ran Locar and Noam Rotem discovered a database hosted on an unprotected Elasticsearch server and suspected it to be part of a credential stuffing operation, the origins of which are yet unidentified.

The 72GB database contained more than 380 million Spotify users’ records, including sensitive data like usernames/passwords, email Ids, country of residence, and other PII (personally identifiable information) of Spotify users.

Read full article on HackRead

Date:

25 November 2020

Categorie(s):

NEWS

Tag(s):

Databases, IT, Leaks, Privacy, Spotify

Four trends to top the CISO’s packed agenda26 April 2024
Microsoft Publicly Releases MS-DOS 4.0 Source Code26 April 2024
New SSLoad Malware Combined With Tools Hijacking Entire Network Domain26 April 2024
Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites26 April 2024
Top 5 MSP Cyberattacks in 2023/202426 April 2024