Hunt will be adding the leaked data to Have I Been Pwned today, and users will be able to use the service to confirm if their account information was exposed. PeopleConnect warns to be on the lookout for targeted phishing attacks and that they will provide further updates as more information becomes available. The company has engaged with a third-party cybersecurity firm to investigate the incident and found no evidence of their network being breached. While PeopleConnect is still investigating the incident, the company says it appears to be an "inadvertent leak or theft of a particular list." The background checks at issue are sold through the website which claims that that it sells background checks to consumers who want to learn more about their family and friends. The published list originated inside our company." The Instant Checkmate class action lawsuit was filed by plaintiff Milo Illich on Dec. "We have confirmed that the list was created several years ago and appears to include all customer accounts created between 20. "We learned recently that a list, including name, email, telephone number in some instances, as well as securely encrypted passwords and expired and inactive password reset tokens, of TruthFinder subscribers was being discussed and made available in an online forum," reads the data security incident notices. Today, PeopleConnect published notices on both Instant Checkmate and TruthFinder confirming that both services suffered a data breach. Pompompurin, the owner of the Breached forum, told BleepingComputer that the data was stolen from an exposed database backup found by a forum member.Īfter BleepingComputer and Troy Hunt of Have I Been Pwned contacted PeopleConnect about the data leak earlier this week, the company immediately launched an investigation and was transparent about its intentions to disclose the incident. ![]() The exposed TruthFinder and Instant Checkmate customer information includes email addresses, hashed passwords, first and last names, and phone numbers. ![]() The threat actor claimed that the data consisted of the following: ![]() The stolen data was shared as two 2.9 GB CSV files containing only customer information before the backup was created on April 16th, 2019. Leak of TruthFinder and Instant Checkmate data on Breached forums Endpoint Detection & Response for Servers
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |