Data of 12 Large Russian Companies Leaked in Public Domain
Attackers Promised to Publish Data of 12 Companies
Attackers from the NLB group promised to publish in the public domain the data of 12 large Russian companies. At the beginning of the week, they posted databases with information about the clients of the Auchan and Your House retail chains. As a result, the data of 7.8 million Auchan customers and about 700,000 customers of Your House hypermarkets got into the network.
The next day, the same group made public the data of customers of the Gloria Jeans chain of clothing stores, as well as the Askona mattress store and the book24.ru online bookstore. The published dumps contained from 2 to 4 million lines.
Data of Four More Companies Leaked
As reported by Data Leakage & Breach Intelligence (DLBI), today, June 8, 2023, the leaks continued, and user data from four more companies got into the network (which means, according to DLBI calculations, there are three more).
The first one today was a partial dump with information about registered users of the Bookvoed online bookstore (bookvoed.ru). Two text files were made available to the public. In total, they have 5,419,806 unique logins, 2.58 million unique email addresses and 2.7 million unique phone numbers.
The first file contains 3,580,578 lines:
First Name Last Name;
login (email address, phone number or identifier in the social network VKontakte, Twitter, Odnoklassniki or Facebook*);
hashed password (MD5 without salt);
date of creation of the record (from November 27, 2008 to May 29, 2023).
The second file contains 3,270,124 lines:
login (email address, phone number or username);
hashed (bcrypt) password.
Another today’s “drain” was a fragment of the SQL dump of the database of the culinary site of Yulia Vysotskaya “Eat at Home” (edimdoma.ru).
In fragment those tables of registered site users contain 535,341 rows:
first name / last name (not for everyone);
email address (490,000 unique addresses);
telephone (40,000 unique numbers);
hashed (bcrypt and SHA-512 with salt) password;
date of birth (not for everyone);
IP address (during registration and last login);
date of account creation and last login (from August 24, 2010 to May 29, 2023).
Also, two files (main.csv and market.csv) with a volume of about 500 MB containing fragments of tables of registered users of the Leroy Merlin online store website (leroymerlin.ru) are published in the public domain. The first file has 1,750,227 lines, the second has 3,352,680.
In total, 4.7 million unique postal addresses and 3.2 million unique phone numbers were found in the files. In general, the dump contains:
First Name Last Name;
telephone;
email address;
hashed password (MD5 with salt);
gender (not for everyone);
date of creation of the record (from November 27, 2008 to May 29, 2023).
Data Leakage of 12 Large Russian Companies
Data leakage of 12 large Russian companies has become a major issue in the country. The attackers from the NLB group have promised to publish the data in the public domain and have already started to do so.
At the beginning of the week, the attackers posted databases with information about the clients of the Auchan and Your House retail chains. As a result, the data of 7.8 million Auchan customers and about 700,000 customers of Your House hypermarkets got into the network.
The next day, the same group made public the data of customers of the Gloria Jeans chain of clothing stores, as well as the Askona mattress store and the book24.ru online bookstore. The published dumps contained from 2 to 4 million lines.
Data of Four More Companies Leaked
As reported by Data Leakage & Breach Intelligence (DLBI), today, June 8, 2023, the leaks continued, and user data from four more companies got into the network (which means, according to DLBI calculations, there are three more).
The first one today was a partial dump with information about registered users of the Bookvoed online bookstore (bookvoed.ru). Two text files were made available to the public. In total, they have 5,419,806 unique logins, 2.58 million unique email addresses and 2.7 million unique phone numbers.
The first file contains 3,580,578 lines:
First Name Last Name;
login (email address, phone number or identifier in the social network VKontakte, Twitter, Odnoklassniki or Facebook*);
hashed password (MD5 without salt);
date of creation of the record (from November 27, 2008 to May 29, 2023).
The second file contains 3,270,124 lines:
login (email address, phone number or username);
hashed (bcrypt) password.
Another today’s “drain” was a fragment of the SQL dump of the database of the culinary site of Yulia Vysotskaya “Eat at Home” (edimdoma.ru).
In fragment those tables of registered site users contain 535,341 rows:
first name / last name (not for everyone);
email address (490,000 unique addresses);
telephone (40,000 unique numbers);
hashed (bcrypt and SHA-512 with salt) password;
date of birth (not for everyone);
IP address (during registration and last login);
date of account creation and last login (from August 24, 2010 to May 29, 2023).
Also, two files (main.csv and market.csv) with a volume of about 500 MB containing fragments of tables of registered users of the Leroy Merlin online store website (leroymerlin.ru) are published in the public domain. The first file has 1,750,227 lines, the second has 3,352,680.
In total, 4.7 million unique postal addresses and 3.2 million unique phone numbers were found in the files. In general, the dump contains:
First Name Last Name;
telephone;
email address;
hashed password (MD5 with salt);
gender (not for everyone);
date of creation of the record (from November 27, 2008 to May 29, 2023).
Data Leakage of 12 Large Russian Companies a Major Issue
Data leakage of 12 large Russian companies has become a major issue in the country. The attackers from the NLB group have promised to publish the data in the public domain and have already started to do so.
At the beginning of the week, the attackers posted databases with information about the clients of the Auchan and Your House retail chains. As a result, the data of 7.8 million Auchan customers and about 700,000 customers of Your House hypermarkets got into the network.
The next day, the same group made public the data of customers of the Gloria Jeans chain of clothing stores, as well as the Askona mattress store and the book24.ru online bookstore. The published dumps contained from 2 to 4 million lines.
Data Leakage & Breach Intelligence (DLBI) reported that today, June 8, 2023, the leaks continued, and user data from four more companies got into the network (which means, according to DLBI calculations, there are three more).
The first one today was a partial dump with information about registered users of the Bookvoed online bookstore (bookvoed.ru). Two text files were made available to the public. In total, they have 5,419,806 unique logins, 2.58 million unique email addresses and 2.7 million unique phone numbers.
The first file contains 3,580,578 lines:
First Name Last Name;
login (email address, phone number or identifier in the social network VKontakte, Twitter, Odnoklassniki or Facebook*);
hashed password (MD5 without salt);
date of creation of the record (from November 27, 2008 to May 29, 2023).
The second file contains 3,270,124 lines:
login (email address, phone number or username);
hashed (bcrypt) password.
Another today’s “drain” was a fragment of the SQL dump of the database of the culinary site of Yulia Vysotskaya “Eat at Home” (edimdoma.ru).
In fragment those tables of registered site users contain 535,341 rows:
first name / last name (not for everyone);
email address (490,000 unique addresses);
telephone (40,000 unique numbers);
hashed (bcrypt and SHA-512 with salt) password;
date of birth (not for everyone);
IP address (during registration and