Jump To Top

goodgameempireplay

Hackers leak over 24M of user records from Vimeo’s Livestream

Undoubtedly, this month has proven to be one of the worst, not only for Mark Zuckerberg, but Instagram and Facebook users as well.

A couple of days after the hacking of more than 2 million accounts of Snapchat users, 24 million records of Livestream user profiles were given for free on the popular DarkNet forum.

Livestream.com is a streaming service that recently joined the Vimeo enterprise family and is now providing services under the Vimeo trademark.

Hackers never cease to amaze with their cynicism and are ready to divulge the entirety of users’ personal lives, which they publish for free on dark forums.

What kind of data was scraped?

While scraping is technically not equal to a data breach, it can be accomplished using designed and allowed access methods, unofficial methods, or holes in security.

It is not clear yet where the data comes from, but it contains confidential information about LiveStream users, including their full username, social networks, email, and time zone.

The cybercriminal gained access to all the data that users leave when registering in the application.

The hacker provided a sample — a fragment of the compromised database. In addition to the sample, hackers also attached a link for a complete download of the Livestream user database, weighing over 7GB.

What are the consequences of the cybersecurity breach?

The hacker gained access to 24 million user accounts of Livestream, which means that the size of the leak exceeds the population of Florida.

With such a set of data in their arsenal, attackers can blackmail, threaten, apply moral pressure, and other illegal actions against innocent users.

Typically, these hacks are carried out for phishing — the most common method of social engineering.

CoolTechZone analyzed the compromised database in detail and concluded that the full name, mail, and social networking info of users is enough to implement a large-scale cyber-attack.

Databases of users of popular applications are published and sold on dark forums every day. For example, the data of 18 million Twitter accounts were recently leaked to the dark web.

Cybercriminals can use other leaks to supplement the information already available about you with new details so that they can later use it against you.

Immediately after the discovery, the CoolTechZone team headed to Livestream support. Unfortunately, the team failed to notify them about the potential breach. The process for reporting is quite long, especially for security breaches, and requires account registration on the bug hunting platform as a bug hunter.

The CoolTechZone team will follow further developments and will be sure to inform you about new details and incidents in the world of cybersecurity.

This story originally appeared on Cooltechzone.com. Copyright 2021

VentureBeat

  • up-to-date information on the subjects of interest to you
  • our newsletters
  • gated thought-leader content and discounted access to our prized events, such as Transform 2021: Learn More
  • networking features, and more

Source: Read Full Article