Skip to main content

Digital Trends may earn a commission when you buy through links on our site. Why trust us?

Hackers are trying to sell a haul of more than 73 million user records

More than 73 million user records stolen from across a number of online services are being offered for sale on the dark web by hacker group ShinyHunters, according to ZDNet.

Affected services include online dating app Zoosk (30 million user records), printing service Chatbooks (15 million), food delivery service Home Chef (8 million), online marketplace Minted (5 million), and U.S. news site Star Tribune (1 million).

ShinyHunters has shared samples from its haul of stolen databases, with ZDNet able to verify the authenticity of the data linked to several of the databases. It’s still working to verify the authenticity of the entire collection.

The hacker group is reportedly selling the huge trove of data for $18,000. In the case of Utah-based Chatbooks, which is the only company to so far have publicly acknowledged the breach, stolen data includes names, email addresses, and passwords, which, despite being encrypted, Chatbooks recommended users to change out of an abundance of caution. A number of phone numbers and Facebook IDs were also stolen from Chatbooks users, though no payment or credit card information is thought to be involved. The company said the breach took place on March 26 and was discovered earlier this month.

The sale of the multiple databases comes a week after it emerged the same group had breached Tokopedia — Indonesia’s largest online store — stealing 91 million user records that it put up for sale with a $5,000 price tag.

Last year an astonishing 773 million unique email addresses — with tens of millions of passwords — from more than 2,000 leaked databases landed up on a hacker forum in one of the biggest incidents of its kind.

It’s not unusual for cybercriminals to gather stolen data — whether obtained through their own efforts or those of others — with a view to selling it on. Buyers could use the data for ID theft or, in some cases, to create counterfeit payment cards for spending sprees that take place before the owner realizes what’s happening.

Digital Trends has reached out to Zoosk and several of the other services to ask them how they’re responding to the reported data breach, and we will update this article when we hear back.

Editors' Recommendations

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Hackers targeted AMD to steal huge 450GB of top-secret data
A depiction of a hacker breaking into a system via the use of code.

A data extortion group known as RansomHouse has asserted that it has stolen upwards of 450GB of sensitive data from AMD.

Team Red has since confirmed that it launched an investigation into the matter after the situation came to light.

Read more
Hackers just stole personal data from millions of Acer customers
acer swift 3 13 2019 review acerswift3132019

Acer has just confirmed that its servers were beached by a group of hackers called Desorden. The hackers managed to steal over 60 gigabytes worth of data containing sensitive information about millions of Acer's customers.

The compromised information includes the names, addresses, and phone numbers of several million clients, but also restricted corporate financial data.

Read more
T-Mobile hacker lambastes carrier’s security measures
how to unlock your iphone use with another carrier t mobile hq sign feat 720x720

As T-Mobile continues to investigate a massive data breach that took place earlier this month, a person claiming to have conducted the attack has described the carrier’s security as “awful.”

Going by the name “John Binns,” the hacker, apparently a 21-year-old American who moved to Turkey several years ago, contacted the Wall Street Journal via messaging app Telegram and discussed details of the attack before it became widely known.

Read more