1 min read

Leaky platform at Chinese adult platform exposed sensitive info of 14 million users

Alina BÎZGĂ

August 08, 2022

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Leaky platform at Chinese adult platform exposed sensitive info of 14 million users

A leaky database belonging to Hjedd, an infamous Chinese-based adult platform, has exposed personal information linked to more than 14 million user accounts.

According to security researcher Anurag Sen, the servers of the NSFW platform had been found leaking more than 24 GB of files with user information, and the server continues to update itself, leaking more information every second.

The researcher said that no security or authentication was required to access the exposed server and exfiltrate user info, including:

  • Usernames and nicknames
  • Phone numbers
  • Member details
  • Comments
  • Email addresses
  • Bcrypt hashed passwords
  • IP addresses and details
  • Messages between users containing sensitive information

Unfortunately, for users, their exfiltrated data has already surfaced on a dark web forum. Researchers at Hackread have discovered that cybercriminals have posted a free download of the Hjedd database, which encompasses the data of over 13.4 million user accounts.

Unfortunately for users, their exfiltrated data has already surfaced on a dark web forum. Researchers at Hackread have discovered that cybercriminals have posted a free download of the Hjedd database, which includes data of over 13.4 million user accounts.

Threats to user privacy and online security

Given the extent of the breach and sensitive information found in the leaky server, cybercriminals could easily conduct targeted phishing and extortion campaigns against users by threatening to reveal their identities to friends and family.

Individuals are also at risk of account takeover attacks, as seasoned cybercriminals could crack the encrypted hashes of the passwords to reveal them in plain text and attempt to hijack accounts and steal financial info.

Want to stay on top of data breaches, leaks and privacy issues to thwart cybercrooks seeking to abuse your data? Then check out Bitdefender Digital identity Protection, our privacy-focused tool that helps you easily manage and monitor your digital footprint and defend against potential security risks.

You get real-time data breach alerts and a handy tool to sniff out social media doppelgangers who could ruin your online reputation alongside a 360-degree view of your digital footprint and personal data exposure throughout the years.

tags


Author



Right now

Top posts

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August 31, 2022

4 min read
Snake Keylogger Returns in Malspam Campaign Disguised as Business Portfolio from IT Vendor

Snake Keylogger Returns in Malspam Campaign Disguised as Business Portfolio from IT Vendor

August 30, 2022

2 min read
What is medical identity theft and how to protect against it

What is medical identity theft and how to protect against it

July 27, 2022

2 min read
Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

July 07, 2022

5 min read
Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

June 28, 2022

2 min read
Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

June 28, 2022

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Researchers Identify New Android Spyware That Can Steal Data and Record Audio Researchers Identify New Android Spyware That Can Steal Data and Record Audio
Vlad CONSTANTINESCU

October 06, 2022

2 min read
Aussie Police Arrest Young Man for Allegedly Extorting Victim of Optus Data Breach Aussie Police Arrest Young Man for Allegedly Extorting Victim of Optus Data Breach
Alina BÎZGĂ

October 06, 2022

2 min read
‘Good-Looking’ Hacker Gets 20 Years Behind Bars for Extorting Millions from Ransomware Victims ‘Good-Looking’ Hacker Gets 20 Years Behind Bars for Extorting Millions from Ransomware Victims
Filip TRUȚĂ

October 06, 2022

1 min read