A new threat actor, Often9, claims to have stolen data for 428 million TikTok users by exploiting a vulnerability in TikTok’s internal API. Although the data includes private information like emails and phone numbers, skepticism remains due to inconsistent sample data and the seller’s lack of reputation. #Often9 #TikTokAPIExploit
Keypoints
- Often9 claims to possess a dataset of 428 million TikTok users with detailed personal information.
- The data was allegedly extracted through exploiting an unpatched internal API vulnerability.
- There are red flags, including generic sample data and the seller’s low reputation on the forum.
- The breach claim mirrors previous false reports about TikTok data leaks on cybercrime forums.
- TikTok is investigating the breach, but validation of the data’s authenticity remains uncertain.
Read More: https://hackread.com/threat-actor-tiktok-breach-428-million-records-sale/1748615489