Data Breach Summary
On June 12th, 2023, we uncovered a major security breach on the dark web that led to the exposure of sensitive data from TopSay.com.br. This breach was carried out by a hacker known as Sumo, who leaked a total of 3.45 GB of compromised information on the notorious dark web forum Cronos.li. The leaked data contained various personal and confidential details related to TopSay.com.br’s online business communication platform in Brazil. The compromised information includes ID, Questionnaire ID, Sending Location, Sending Code, Torpedo ID, Registered Package, Patient, Mobile, WhatsApp ID, Message, Date and Time, Attendance Date and Time, Doctor, Procedure, Status, Attendance Location, Scheduled Date and Time, Attendant, Unit Code, Unit, Provider, Insurance, Gender, Date of Birth, Temporary Data, NPS, Response, Return IP.
Where and How?
TopSay.com.br is an online business communication platform in Brazil. The security breach occurred as a result of a database vulnerability that allowed the hacker to gain unauthorized access to sensitive information. Based on our analysis, it appears that the hacker exploited a technique called SQL injection to exploit the vulnerability and gain access to the database. Once inside, the hacker had unrestricted access to the compromised data, which was subsequently published on the dark web forum Cronos.li by Sumo. This breach has resulted in a significant loss of data for both TopSay.com.br and its users. The stolen information exposes individuals to various risks, including identity theft, financial fraud, and privacy breaches.
A Screenshot of the data can be found below:
Company Data Breach History
To the best of our knowledge, there is no known history of security breaches for TopSay.com.br prior to this incident. This breach represents a notable security breach experienced by the company. It is crucial for TopSay.com.br to take immediate action to address the vulnerability that led to this breach and implement robust security measures to prevent future incidents.
Recommendations for Personal Data Protection
How Users Can Protect Their Information
To protect their personal information and accounts from being compromised, users should take the following steps:
– Change their passwords frequently, with a combination of letters, numbers, and symbols.
– Enable two-factor authentication whenever possible.
– Use unique passwords for each account, to prevent hackers from accessing multiple accounts with the same password.
– Be cautious of suspicious emails or messages, as they may contain phishing links that can compromise their accounts.
– Regularly monitor their accounts for any suspicious activity.
What is InsecureWeb?
InsecureWeb is a Dark Web monitoring service that keeps track of recent data breaches and tracks their impact by monitoring the darkest places of the internet. InsecureWeb notifies users and enterprises when their data has been found online and helps them mitigate the impact.