Skip to main content

Digital Trends may earn a commission when you buy through links on our site. Why trust us?

Hackers are trying to sell a haul of more than 73 million user records

More than 73 million user records stolen from across a number of online services are being offered for sale on the dark web by hacker group ShinyHunters, according to ZDNet.

Affected services include online dating app Zoosk (30 million user records), printing service Chatbooks (15 million), food delivery service Home Chef (8 million), online marketplace Minted (5 million), and U.S. news site Star Tribune (1 million).

ShinyHunters has shared samples from its haul of stolen databases, with ZDNet able to verify the authenticity of the data linked to several of the databases. It’s still working to verify the authenticity of the entire collection.

The hacker group is reportedly selling the huge trove of data for $18,000. In the case of Utah-based Chatbooks, which is the only company to so far have publicly acknowledged the breach, stolen data includes names, email addresses, and passwords, which, despite being encrypted, Chatbooks recommended users to change out of an abundance of caution. A number of phone numbers and Facebook IDs were also stolen from Chatbooks users, though no payment or credit card information is thought to be involved. The company said the breach took place on March 26 and was discovered earlier this month.

The sale of the multiple databases comes a week after it emerged the same group had breached Tokopedia — Indonesia’s largest online store — stealing 91 million user records that it put up for sale with a $5,000 price tag.

Last year an astonishing 773 million unique email addresses — with tens of millions of passwords — from more than 2,000 leaked databases landed up on a hacker forum in one of the biggest incidents of its kind.

It’s not unusual for cybercriminals to gather stolen data — whether obtained through their own efforts or those of others — with a view to selling it on. Buyers could use the data for ID theft or, in some cases, to create counterfeit payment cards for spending sprees that take place before the owner realizes what’s happening.

Digital Trends has reached out to Zoosk and several of the other services to ask them how they’re responding to the reported data breach, and we will update this article when we hear back.

Editors' Recommendations

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
A data breach can cost millions of dollars — and you might be paying it
A dark mystery hand typing on a laptop computer at night.

According to a recent report from IBM Security, data breach costs are constantly on the rise. Unfortunately, this spells bad news not just for the companies involved, but also for the customers -- in more ways than one.

The report, which states that an average data breach is now estimated to cost $4.4 million, exposes the fact that the skyrocketing costs of data breaches directly affect the prices paid by the end customer.

Read more
Personal data of 69 million Neopets users is now up for sale after a data breach
Person typing on a computer keyboard.

Neopets, an aged website that lets users keep virtual pets and take care of them, just suffered a major data breach. Aside from the personal data of over 69 million users, the hacker was able to obtain the website's source code.

This isn't the first time Neopets has faced a massive leak, but this time around, user data is currently being sold for crypto -- and the leak includes more than just usernames and passwords.

Read more
Hacker steals 1 billion people’s records in unprecedented data breach
A depiction of a hacker breaking into a system via the use of code.

An anonymous hacker has stated that he has successfully infiltrated the Shanghai police department’s database. In doing so, he apparently extracted personal information of a staggering one billion Chinese citizens.

The individual, 'ChinaDan', took sole responsibility for the data breach. As reported by Reuters and PCMag, he detailed the incident on hacker forum Breach Forums.

Read more