Brinztech Alert: Data of Sharethrough are on Sale

Dark Web News Analysis

A threat actor on a known cybercrime forum is making an extraordinary claim to be selling two massive databases that they allege were stolen from Sharethrough, an advertising technology company. According to the seller’s post, the offering includes one database with 242 million records and a second with 370 million records. The purportedly compromised data contains a wide range of Personally Identifiable Information (PII), including email addresses, physical addresses, phone numbers, IP addresses, and other sensitive details. The seller is demanding a firm price of $10,000 in the privacy-focused cryptocurrency Monero (XMR).

This claim, if true, represents a data breach of catastrophic proportions. A leak of over 600 million records from an ad tech company would be a devastating blow to the privacy of a significant portion of the global internet-using population. Ad tech databases are a goldmine for criminals, as they contain the detailed information needed to create highly effective and personalized phishing and fraud campaigns. The data would also be an invaluable asset for state-sponsored actors to conduct mass surveillance or launch widespread disinformation campaigns.

Key Cybersecurity Insights

This alleged data breach presents a critical and global threat to online privacy:

• Catastrophic Scale of PII Exposure: The most significant aspect of this claim is the sheer volume of over 600 million records. A breach of this magnitude would be one of the largest in recent history, creating an enormous pool of potential victims for a wide array of cybercrimes for years to come.
• A Goldmine for Hyper-Targeted Scams: Ad tech databases are purpose-built for profiling. The combination of PII with IP addresses and likely browsing habits provides a complete toolkit for criminals to launch hyper-targeted phishing, social engineering, and fraud campaigns on a massive scale.
• High-Value Intelligence for Espionage: A database that maps the personal details and online activities of hundreds of millions of people is an invaluable asset for state-sponsored actors. It can be used for intelligence gathering, identifying targets for espionage, or for launching targeted disinformation campaigns.

Mitigation Strategies

In the face of large-scale, aggregated data leaks from the ad tech industry, all internet users and businesses must be vigilant:

• Assume Your Data is Compromised and Be Vigilant: All individuals should operate under the assumption that their personal and browsing data is available on the dark web. This requires treating all unsolicited communications with extreme skepticism and verifying any request for information or payment through a separate, trusted channel.
• Mandate Multi-Factor Authentication (MFA) Universally: This is the single most effective defense against the most common abuses of this data (phishing for credentials and credential stuffing). All users must enable the strongest form of MFA on all of their important online accounts.
• Utilize Privacy-Enhancing Tools: Users should be encouraged to use privacy tools such as ad blockers and anti-tracking features in their web browsers. These tools can help limit the amount of personal and behavioral data that ad tech companies are able to collect in the first place.

Secure Your Organization with Brinztech As a cybersecurity provider, we can protect your business from the threats discussed here. Contact us to learn more about our services.

Questions or Feedback? For expert advice, use our ‘Ask an Analyst’ feature. Brinztech does not warrant the validity of external claims. For general inquiries or to report this post, please email us: contact@brinztech.com