Ask.FM database of 350 million user records allegedly for sale online - Zanewslive.com
Ask.FM database of 350 million user records allegedly for sale online
By user - September 22, 2022 9 0
A listing on a popular hacking forum is offering 350 million Ask.FM user records for sale in what could be one of the biggest hacks of all time. Cybernews reports: The list allegedly includes 350 million Ask.FM user records, with the threat actor also offering 607 repositories plus their Gitlab, Jira, and Confluence databases. Ask.FM is a question and answer network launched in June 2010 with over 215 million registered users. The location also includes a list of repositories, a git example, and a user data example, as well as mentions of the fields in the database: user_id, username, mail, hash, salt, fbid, twitterid, vkid, fbuid, iguid. It turns out that Ask.FM uses a weak SHA1 hashing algorithm for passwords, putting them at risk of being hacked and exposed to threats.
In response to DataBreaches, the user who hosted the database – Data – explained that the initial access was gained through a vulnerability in the Security Center. The server was first accessed in 2019 and the database was accessed on March 14, 2020. The data also suggests that Ask.FM was aware of the hack as early as 2020. While the hack has not been confirmed, a vendor called “Data” says it will “take care 24/7” of user data from Ask.FM. (ASKfm), a social networking site. “I’m selling Ask.fm and ask.com’s user base,” Deyto wrote. “For the connoisseur, you can also get 607 repositories plus their Gitlab, Jira, Confluence databases.”
By user - September 22, 2022 9 0
A listing on a popular hacking forum is offering 350 million Ask.FM user records for sale in what could be one of the biggest hacks of all time. Cybernews reports: The list allegedly includes 350 million Ask.FM user records, with the threat actor also offering 607 repositories plus their Gitlab, Jira, and Confluence databases. Ask.FM is a question and answer network launched in June 2010 with over 215 million registered users. The location also includes a list of repositories, a git example, and a user data example, as well as mentions of the fields in the database: user_id, username, mail, hash, salt, fbid, twitterid, vkid, fbuid, iguid. It turns out that Ask.FM uses a weak SHA1 hashing algorithm for passwords, putting them at risk of being hacked and exposed to threats.
In response to DataBreaches, the user who hosted the database – Data – explained that the initial access was gained through a vulnerability in the Security Center. The server was first accessed in 2019 and the database was accessed on March 14, 2020. The data also suggests that Ask.FM was aware of the hack as early as 2020. While the hack has not been confirmed, a vendor called “Data” says it will “take care 24/7” of user data from Ask.FM. (ASKfm), a social networking site. “I’m selling Ask.fm and ask.com’s user base,” Deyto wrote. “For the connoisseur, you can also get 607 repositories plus their Gitlab, Jira, Confluence databases.”
