Tuesday, January 26, 05:31
Home security Wishbone app: Hacker sells data to 40 million users

Wishbone app: Hacker sells data to 40 million users

Wishbone

A hacker has set towards data sales of 40 million users of the Wishbone application. It's a popular mobile app, which allows them users to compare two elements with a simple vote.

Ο hacker advertises stolen data in many hacking forums. Their price is 0,85 bitcoin (. $ 8000).

According to the seller, Wishbone's user data includes user information, such as usernames, e-mail, phone numbers, city / state / country, but also hashed codes access.

The hacker claims that the passwords are on SHA1 format, although a sample examined contained passwords to MD5.

The MD5 is a weak one password hashing format, which can break and reveal real codes access in plain text. This can be done even with tools available for free at Internet.

The data also included links that led to profile pictures in Wishbone. The URLs included in the data samples include: photos depicting minors.

data

Η Hacking attack on the Wishbone application took place earlier this year

The seller claims that the data of the Wishbone application was obtained through a hacking attack, which took place earlier this year. Based on the published data, this claim is rather true.

It is not clear, however, whether the person has put all of them advertisements in hacking forums is the real hacker.

The person behind the ads is what security researchers call it "Data broker". In other words, he is the one who specializes in purchase and resale of breached databases in hacking forums and dark website markets.

According to the ads, the specific criminal seems to be selling databases from dozens of other companies (total over 1,5 billion files).

Most of the databases come from Companies who have reported violations in previous years. Wishbone had fallen victim attack and in 2017, when a hacker stole data from 2,2 million users.

However, the data sample found now does not include data from it infringement This confirms that these are new infringed accounts and therefore a new Wishbone hack.

Wishbone has not disclosed the total number of users in recent years. However, the application is located on 50 most popular social networking applications in the iOS App Store for years. In 2018, it was among the 10 most popular apps. In the Google Play Store, the app has 5 to 10 million downloads.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortresshttps://www.secnews.gr
Pursue Your Dreams & Live!

LIVE NEWS

00:02:40

COVID-19 vaccines: Ways to protect supply chains

The development of vaccines for COVID-19 in such a short period of time has created many challenges and these are not only related to ...
00:02:17

How do insurance companies "enhance" ransomware attacks?

Ransomware attacks have increased significantly, with experts warning that their victims should not pay ransom to hackers ....

Russia: "US may be planning retaliation for SolarWinds hack"!

The Russian government warns the country's organizations about possible cyber attacks that the US may carry out, as "retaliation" for the hack ...

iPhone: How to see which apps have access to your contacts

Some iPhone privacy issues go deeper than accessing your contacts list, which exposes your contacts to ...

COVID-19: Google makes vaccination clinics available

Google CEO Sundar Pichai said Monday that the company will make its facilities available to become clinics ...

Netflix offers "studio quality" audio upgrade on Android

Do not be surprised if Netflix sounds better the next time you run a marathon with rows on your Android phone ...

Will Bitcoin return to $ 40.000? There is concern!

Bitcoin lovers who take his return above the level of $ 40.000 for granted have been worried because the demand ...

Avaddon ransomware: Its operators threaten with DDoS attacks to get ransom!

Lately, more and more ransomware gangs tend to threaten their targets with DDoS attacks in order to secure profits ....

Volunteer firefighters will be trained through VR simulation

Volunteer firefighters in the Australian state of Victoria will soon have access to the virtual reality (VR) training that will be available in ...

Tesla: Accuses its former employee of stealing her confidential data!

On January 23, Tesla sued former employee Alex Khatilov for stealing 26.000 confidential documents, including trade secrets. The software ...