Data Breach Summary
In recent news, the popular Russian e-commerce platform Wildberries.ru has suffered a security breach, resulting in the compromise of 41.8 MG of sensitive information. This breach was discovered on June 4th, 2023, and was posted by the notorious hacker nulled121312 on the dark web forum Nulled.
Where and How?
The breach was found on the dark web forum Nulled, a platform commonly used by hackers to share and sell stolen data. It is still unclear how the hacker was able to access Wildberries’ database, but it appears that the website’s security measures were not strong enough to prevent the breach. The compromised information includes personal data of customers, such as names, addresses, phone numbers, and email addresses.
A Screenshot of the data can be found below:
Company Data Breach History
Unfortunately, this is not the first time Wildberries has been targeted by hackers. In 2021, the company suffered a similar data breach, which resulted in the compromise of 20 million customer records. The breach was caused by an unsecured database that was left exposed to the internet, allowing hackers to access it easily.
Wildberries has since taken measures to improve their security, such as implementing two-factor authentication and hiring a dedicated cybersecurity team. However, this recent breach shows that there is still work to be done to protect their customers’ data.
Recommendations for Personal Data Protection
How Users Can Protect Their Information
To protect their personal information and accounts from being compromised, users should take the following steps:
– Change their passwords frequently, with a combination of letters, numbers, and symbols.
– Enable two-factor authentication whenever possible.
– Use unique passwords for each account, to prevent hackers from accessing multiple accounts with the same password.
– Be cautious of suspicious emails or messages, as they may contain phishing links that can compromise their accounts.
– Regularly monitor their accounts for any suspicious activity.
What is InsecureWeb?
InsecureWeb is a Dark Web monitoring service that keeps track of recent data breaches and tracks their impact by monitoring the darkest places of the internet. InsecureWeb notifies users and enterprises when their data has been found online and helps them mitigate the impact.