IT Security firm Qualys extorted by Clop gang after data breach

This discovery was made by researchers at Comparitech who found out that the information leaked included:

  • Names
  • Passwords
  • Email addresses
  • Original source of the leak.

The data was stored on an Elasticsearch cluster and in total, there were 5,085,132,102 records. This data may or may not have been accessed by a number of third parties, there really is no way of telling.

According to Comparitech’s report, some of the data belonged to high profile data breaches such as:

  • Zoosk
  • Tumbler
  • Antipublic
  • MySpace
  • Canva
  • iMesh
  • Edmodo
  • VK
  • Exploit
  • Master Breach Comp
  • Rambler
  • Onebip
  • Scentbird
  • Toondoo
  • Wishbone
  • Wattpad
  • Mathway
  • MGM
  • Estante (Brazilian book shop)

The blog post detailing the data breach elaborated that password leaks may be one of the bigger concerns since even if users change their password to one account, hackers may still be able to use that password to try to login to another account if it’s being used for more than one account. 

From Cognyte’s side, a fast response was observed as cybersecurity expert Bob Diachenko, leader of the Comparitech security research team, informed Cognyte about the exposed data on 29th May 2021, and the database was secured three days later.

Cybersecurity firm exposes 5 billion records login credentials

Example of the data exposed online (Image credit: Comparitech)

Although, it cannot be said for how long the database had been exposed before the Comparitech team found it. Nevertheless, the statement given by Cognyte to Comparitech stated that,

“Thanks to the information provided by the security researcher, Volodymyr ‘Bob’ Diachenko, Cognyte was able to rapidly respond to and block a potential exposure. We appreciate such a responsible and constructive approach, which helps raise awareness and induces companies and organizations to implement security safeguards and better protect their data.”

This however is not the first time when a cybersecurity company has leaked a trove of data collected from previous and large-scale data breaches. Last year, an England-based cybersecurity firm exposed 5 billion records (5,088,635,374 records) on an Elasticsearch cluster and forced publications to remove their name from the reports covering the incident.

Did you enjoy reading this article? Like our page on Facebook and follow us on Twitter.

Posted by Charlie