Chatbooks Suffers Data Breach: Personal Info Sold on the Dark Web

Chatbooks is the latest victim of a data breach. Hackers have breached their data base and sold uers personal information on the dark web.

Photo-printing company, Chatbooks, is the latest victim of a data breach. They are alerting their users of a data breach. They urged their users to change their passwords as a result of the hack. From Cyberscoop:

Chatbooks, a Utah-based company that sells albums of digital photos, told customers on May 8 it was victimized on March 26 by attackers who accessed Chatbooks login credentials, including names, email addresses and individually salted and hashed passwords, and, for some customers, phone numbers and Facebook ID data.

“We’ve hired a digital forensics firm and our investigation is ongoing, but as we learn more we will continue to communicate with our community and other stakeholders,” CEO Nate Quigley wrote in an email to CyberScoop.

Chatbooks appears to be just one of a growing number of international companies victimized by a hacking group which calls itself “Shiny Hunters.” The same group of scammers claimed to steal 91 million usernames and passwords from Tokopedia, an Indonesian e-commerce company, as well as the food delivery service HomeChef, the Chronicle of Higher Education, and a number of other seemingly random organizations. These attackers also are advertising databases of stolen records on illicit web forums, typically for thousands of dollars.

The fact that a hacking group is behind a number of data breaches lately does go a long way in explaining why there have been so many breaches as of late. Earlier this month, we did cover the Tokopedia 91 million user data breach. That breach quickly resulted in a lawsuit from the KKI which also named the Indonesia Communications Ministry as well. If anything, the locations of the victims does seem indiscriminate which would contribute to the theory that this is a money making enterprise more than anything else.

It is unclear from the reports we’ve seen how many people are affected by this latest breach.

This month has been particularly busy with security incidences. It started with the Webkinz data breach which saw 23 million accounts compromised. After that, we saw the GoDaddy data breach.

After the Tokopedia data breach, we saw the Unacademy data breach. That saw 22 million accounts compromised. Then, we saw the Cam4 data leak which saw 10 billion records exposed. That was followed up by one of the most ironic data breaches where data leaking marketplace WeLeakData got hit with a data breach. That saw hacker information get sold on the dark web. After that, just yesterday, we reported on the MobiFriends data breach. That saw 4 million accounts compromised.

One thing is for sure, we are seeing quite the trail of carnage and chaos this month.

Drew Wilson on Twitter: @icecube85 and Facebook.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: