Millions of people could be at risk of phishing and social engineering, after a threat actor advertised a huge database of TEG customers on a popular hacking forum.
The unnamed hacker posted a new thread on an underground forum, offering to sell personally identifiable information (PII) on 30 million people, including people’s full names, genders, and birth dates. Furthermore, the database contained usernames and hashed passwords for the TEG account, as well as email addresses used to register those accounts.
Snowflake again?
In late May 2024, Ticketek reported on a data breach affecting Australian customers, saying the information was stored “in a cloud-based platform, hosted by a reputable, global third party supplier.” While, at the time, it said no customer accounts had been compromised, TEG added that “customer names, dates of birth and email addresses may have been impacted.”
TEG is not yet commenting on the news. Snowflake chief information security officer Brad Jones said that the company has not “identified evidence suggesting this activity was caused by a vulnerability, misconfiguration, or breach of Snowflake’s platform.”
If the database turns out to be authentic, it will be the second such incident in as many months, after May’s Ticketmaster breach. In both incidents, the cause of the trouble could be Snowflake, since in both incidents, a cloud-based platform was involved.
In late May, known criminals ShinyHunters published a 1.3TB database of compromised customer data on the newly-reopened BreachForums dark web forum.
Via TechCrunch
More from TechRadar Pro
- Jollibee data breach could affect millions of customers
- Here's a list of the best firewalls today
- These are the best endpoint protection tools right now