Threat Actor: Unknown | unknown
Victim: Lulu Hyper Market | Lulu Hyper Market
Price: Negotiable
Exfiltrated Data Type: User data (full names, email addresses, physical addresses, hashed passwords)
Key Points :
- Approximately 2,796,835 user records are involved in the breach.
- The compromised data includes sensitive information such as full names, email addresses, physical addresses, and PBKDF2 hashed passwords.
- The breach reportedly occurred in July 2024.
- The data is in a .bacpac format, which is large and difficult for the threat actor to manage.
- Potential buyers are encouraged to contact the seller via private messages on the forum for purchase details.
- The breach has been verified by HaveIBeenPwned, a reputable data breach verification service.
According to the post, the database contains sensitive information from approximately 2,796,835 users. This figure has been corroborated by HaveIBeenPwned, a well-known data breach verification service. The compromised data includes full names, email addresses, physical addresses, and PBKDF2 hashed passwords, a hashing algorithm used to protect passwords. According to the threat actor, the breach occured in July 2024.
The threat actor described the file as a .bacpac format, which is too large for them to manage effectively, leading to difficulties in accessing or providing a sample of the data. The seller has indicated that interested parties can purchase the full database through private messages on the forum.
The post Approximately 2.8M User Data From Lulu Hyper Market is For Sale appeared first on Daily Dark Web.