HQ/EMEAFind out how we can help your business
While the world observed the year-end holidays, a concerning event known as “Leaksmas” unfolded on the dark web, with cybercriminals engaging in malicious activities, conducting data breaches and network intrusions during the holiday season worldwide.
Cybersecurity researchers observed multiple actors sharing substantial data dumps freely tagged with ‘Free Leaksmas,’ highlighting the concerning pattern where cybercriminals show mutual gratitude by sharing stolen data.
Leaksmas goes international, impacting nations across the globe.
The impact of “Leaksmas” extended far beyond the US, reaching countries such as France, Peru, Vietnam, Italy, Russia, Mexico, the Philippines, Switzerland, Australia, India, and South Africa.
One significant incident during the event involved a major telecom provider in Peru, Movistar, where over 22 million records were exposed. This breach included customers’ phone numbers and DNI (Documento Nacional de Identidad) numbers, posing a serious threat of identity theft and fraud, especially given the DNI’s significance in Peruvian civil, commercial, administrative, and judicial activities.
The cyber onslaught continued with breaches impacting a government agency in Chile, a credit service in the Philippines releasing over 15.77 GB of data, and a French company disclosing approximately 1.5 million records. Additionally, a leak concerning a project later acquired by Klarna, a Swedish fintech company, was “gifted” by cybercriminals, with rumours of the breach circulating since 2022.
The dark web events also saw a Vietnam-based fashion store breach, exposing over 2.5 million victim records—valuable assets for spammers and illegal affiliate marketing specialists seeking profits during the winter holiday season. An Italian online military gear shop with a small database of 2,000 records became a target, potentially attracting foreign cyber actors interested in defence-related information.
India, known for its vast economy and rapid digitisation, also faced cyber threats during the season. A sushi restaurant network in Russia witnessed a leak involving over 164,052 records, notable for its novelty on the Dark Web.
On the other hand, the “Five Families” alliance, a collective of hacktivist groups, executed a data leak affecting a Chinese clothing store with over 1 million records. Their ambitious plans for 2024, including more data leaks, were publicly acknowledged, raising concerns about the escalating nature of cyber threats.
As cyber criminals actively exploited the festive season, offering discounts on stolen payment data, online banking, and look-up services, the underground economy witnessed a surge in activity. The complex interconnection between personal data and digital identity makes mitigating the potential millions of dollars in damage a challenging task for consumers globally.
The “Leaksmas” event is a clear indication of how cybercriminals operate globally, affecting regions that are going through quick digital changes. As a new year is about to begin, it is crucial to pay extra attention to securing digital identities, including putting strong measures in place to protect against cybercriminals.
