A threat actor using the handle Shinchan claims to be selling the full user database for Daryn Online, Kazakhstan’s largest online education platform, allegedly exposing about 4 million user records totaling over 1 GB. The dataset reportedly includes names, birthdates, contact details, passwords and multiple authentication tokens that could enable account takeover, and many affected users are students and likely minors. #Shinchan #DarynOnline
Keypoints
- Shinchan is selling the complete Daryn Online user database, with no partial sales, claiming approximately 4 million records (1 GB+).
- Compromised fields include full names, birthdates, phone numbers, email addresses, avatars, passwords, and authentication tokens (remember, mobile, email hash tokens).
- The inclusion of valid authentication tokens alongside passwords increases the risk of account takeover even if passwords have been changed.
- Daryn Online, launched in 2019 and backed by Bugin Holding, serves millions across Kazakhstan with 28 educational services including national exam preparation.
- The seller provided proof screenshots and sample records and is directing buyers to contact them via Telegram or Session for pricing.
DarkWebInformer.com Providing intel from some of the darkest places on the Dark Web & Clearnet. Breaches, Darknet Markets, Ransomware, Threat Alerts, & more!