A cyber threat actor claims to have stolen and is selling a database from Gran Cursos Online, exposing sensitive user information. The breach affects over 400,000 paying students and includes personal details like CPF numbers and session tokens. #GranCursosOnline #DataLeak #BrazilianCybersecurity
Keypoints
- The breach involves the exfiltration of a database with approximately 570,000 user entries.
- The compromised data include sensitive PII such as full names, email addresses, and CPF numbers.
- The threat actor is offering the stolen data for sale at a price of $500.
- The leak exposes session tokens, JWT authentication keys, and device fingerprints, risking session hijacking.
- Gran Cursos Online serves over 400,000 students preparing for public exams in Brazil.
Read More: https://dailydarkweb.net/gran-cursos-online-data-breach-exposes-570k-user-records/