Friday, February 3, 2023
No Result
View All Result
logo
  • World
  • Opinion
  • UK News
  • Politics
  • Business
  • Science
  • Entertainment
    The 'Deadpool' creator Liefeld praises "The Night Comes for Us"

    The ‘Deadpool’ creator Liefeld praises “The Night Comes for Us”

    BLACKPINK’s Jennie announces release date of solo debut

    BLACKPINK’s Jennie announces release date of solo debut

    Hail a Ride Hands-Free: Apple Opens Siri to Outside Developers

    Hail a Ride Hands-Free: Apple Opens Siri to Outside Developers

    Mount Rinjani to be closed following the Lombok earthquake

    Mount Rinjani to be closed following the Lombok earthquake

    Bantar Gebang residents ask for increase in 'smelly money'

    Bantar Gebang residents ask for increase in ‘smelly money’

    The Chainsmokers Actually Make a Great Nickelback Cover Band

    The Chainsmokers Actually Make a Great Nickelback Cover Band

    Man Blows Himself Up On Empty Belgium Football Field

    Man Blows Himself Up On Empty Belgium Football Field

    Expert Tips: Important tips to improve your breakfast routine

    Expert Tips: Important tips to improve your breakfast routine

    Satay Western 'Marlina the Murderer' to represent Indonesia at the Oscars

    Satay Western ‘Marlina the Murderer’ to represent Indonesia at the Oscars

    Oka Antara plays police detective in new crime series 'Brata'

    Oka Antara plays police detective in new crime series ‘Brata’

  • Lifestyle
    • All
    • Fashion
    • food
    • Health
    • Travel
    China top lamp shade materials and lamp shade maker, (3)

    New lamp shade fabric/material: Artificial Rattan, from China top lamp shade materials and lamp shade maker, MEGA Fitting factory

    The gorgeous converted Gower barn at the end of a remote country lane that’s the perfect coastal hideaway

    The gorgeous converted Gower barn at the end of a remote country lane that’s the perfect coastal hideaway

    Scottish tourism bookings fall as cost-of-living crisis bites

    Scottish tourism bookings fall as cost-of-living crisis bites

    Alison Hammond confirms new romance with partner who makes her ‘heart sing’

    Alison Hammond confirms new romance with partner who makes her ‘heart sing’

    Airbnb host restrictions ‘could cost Scottish economy millions’

    Airbnb host restrictions ‘could cost Scottish economy millions’

    Love Island’s first look trailer features Michael Owen’s daughter Gemma and showcases contestants’ day jobs

    Love Island’s first look trailer features Michael Owen’s daughter Gemma and showcases contestants’ day jobs

    Scottish tech firm hopes to tackle problems of tourist overcrowding

    Scottish tech firm hopes to tackle problems of tourist overcrowding

    Period Cramps Are The Worst! Here are A Few Homemade Hacks To Help

    rivage sunglasses

    RIVAGEUK: The Best Watches And Sunglasses Brand That Will Take Your Style To The Next Level

    wheelchair accessible vehicle

    Wheelchair Accessible Vehicle – Some Important Things to Know Before Purchasing

    Trending Tags

    • Golden globes
    • Climate Change
  • World
  • Opinion
  • UK News
  • Politics
  • Business
  • Science
  • Entertainment
    The 'Deadpool' creator Liefeld praises "The Night Comes for Us"

    The ‘Deadpool’ creator Liefeld praises “The Night Comes for Us”

    BLACKPINK’s Jennie announces release date of solo debut

    BLACKPINK’s Jennie announces release date of solo debut

    Hail a Ride Hands-Free: Apple Opens Siri to Outside Developers

    Hail a Ride Hands-Free: Apple Opens Siri to Outside Developers

    Mount Rinjani to be closed following the Lombok earthquake

    Mount Rinjani to be closed following the Lombok earthquake

    Bantar Gebang residents ask for increase in 'smelly money'

    Bantar Gebang residents ask for increase in ‘smelly money’

    The Chainsmokers Actually Make a Great Nickelback Cover Band

    The Chainsmokers Actually Make a Great Nickelback Cover Band

    Man Blows Himself Up On Empty Belgium Football Field

    Man Blows Himself Up On Empty Belgium Football Field

    Expert Tips: Important tips to improve your breakfast routine

    Expert Tips: Important tips to improve your breakfast routine

    Satay Western 'Marlina the Murderer' to represent Indonesia at the Oscars

    Satay Western ‘Marlina the Murderer’ to represent Indonesia at the Oscars

    Oka Antara plays police detective in new crime series 'Brata'

    Oka Antara plays police detective in new crime series ‘Brata’

  • Lifestyle
    • All
    • Fashion
    • food
    • Health
    • Travel
    China top lamp shade materials and lamp shade maker, (3)

    New lamp shade fabric/material: Artificial Rattan, from China top lamp shade materials and lamp shade maker, MEGA Fitting factory

    The gorgeous converted Gower barn at the end of a remote country lane that’s the perfect coastal hideaway

    The gorgeous converted Gower barn at the end of a remote country lane that’s the perfect coastal hideaway

    Scottish tourism bookings fall as cost-of-living crisis bites

    Scottish tourism bookings fall as cost-of-living crisis bites

    Alison Hammond confirms new romance with partner who makes her ‘heart sing’

    Alison Hammond confirms new romance with partner who makes her ‘heart sing’

    Airbnb host restrictions ‘could cost Scottish economy millions’

    Airbnb host restrictions ‘could cost Scottish economy millions’

    Love Island’s first look trailer features Michael Owen’s daughter Gemma and showcases contestants’ day jobs

    Love Island’s first look trailer features Michael Owen’s daughter Gemma and showcases contestants’ day jobs

    Scottish tech firm hopes to tackle problems of tourist overcrowding

    Scottish tech firm hopes to tackle problems of tourist overcrowding

    Period Cramps Are The Worst! Here are A Few Homemade Hacks To Help

    rivage sunglasses

    RIVAGEUK: The Best Watches And Sunglasses Brand That Will Take Your Style To The Next Level

    wheelchair accessible vehicle

    Wheelchair Accessible Vehicle – Some Important Things to Know Before Purchasing

    Trending Tags

    • Golden globes
    • Climate Change
No Result
View All Result
logo
No Result
View All Result
Home Business

235 Million Instagram, TikTok And YouTube User Profiles Exposed In Massive Data Leak

by Markel
in Business
Reading Time: 9min read
0
SHARES
Share on FacebookShare on Twitter

The security research team at Comparitech today disclosed how an unsecured database left almost 235 million Instagram, TikTok and YouTube user profiles exposed online in what can only be described as a massive data leak.

Business card-style security and privacy guides given away on Safer Internet Day to Instagram, TikTok and YouTube users
235 million social media users warned of phishing risk following data exposure
 
DPA/PICTURE ALLIANCE VIA GETTY IMAGES

Recently there has been a spate of reports concerning account data appearing on dark web cybercrime forums. From the dark web audit suggesting there are currently 15 billion stolen logins from 100,000 breaches out there, to the hacker giving away 386 million stolen records for free. Not all of this data will have been hacked, at least not in the usual sense of the word: some, as was likely the case in the Utah Gun Exchange incident, will have been exposed by an unsecured database.

The unsecured database problem

Unsecured databases are fast becoming such a huge data protection problem that it’s thought a vigilante security researcher is behind the spate of “Meow” attacks that have overwritten the indexes of thousands of such databases. And it was such an unsecured database that the Comparitech researchers, led by Bob Diachenko, discovered on August 1, leaving the personal profile data of nearly 235 million Instagram, TikTok and YouTube users up for grabs.

The data was spread across several datasets; the most significant being two coming in at just under 100 million each and containing profile records apparently scraped from Instagram. The third-largest was a dataset of some 42 million TikTok users, followed by just under 4 million YouTube user profiles.

Comparitech says that, based on the samples it collected, one in five records contained either a telephone number or email address. Every record also included at least some, sometimes all, the following information:

  • Profile name
  • Full real name
  • Profile photo
  • Account description

Statistics about follower engagement, including:

  • Number of followers
  • Engagement rate
  • Follower growth rate
  • Audience gender
  • Audience age
  • Audience location
  • Likes
  • Last post timestamp
  • Age
  • Gender

“The information would probably be most valuable to spammers and cybercriminals running phishing campaigns,” Paul Bischoff, Comparitech editor, says. “Even though the data is publicly accessible, the fact that it was leaked in aggregate as a well-structured database makes it much more valuable than each profile would be in isolation,” Bischoff adds. Indeed, Bischoff told me that it would be easy for a bot to use the database to post targeted spam comments on any Instagram profile matching criteria such as gender, age or number of followers.

Tracing the source of the leaked data

So, where did all this data originate? The researchers suggest that the evidence, including dataset names, pointed to a company called Deep Social. However, Deep Social was banned by both Facebook and Instagram in 2018 after scraping user profile data. The company was wound down sometime after this.

A Facebook company spokesperson told me that “scraping people’s information from Instagram is a clear violation of our policies. We revoked Deep Social’s access to our platform in June 2018 and sent a legal notice prohibiting any further data collection.”

Once the researchers found the database and the clues to its origin, “we sent an alert to Deep Social, assuming the data belonged to them,” Bischoff says. The administrators of Deep Social then forwarded the disclosure to a Hong Kong-registered social media influencer data-marketing company called Social Data. “Social Data shut down the database about three hours after our initial email,” Bischoff says.

Social Data responds to the database exposure incident

Social Data has denied any connection between itself and Deep Social, according to the Comparitech report. It should also be made clear that the data leaked, social media public profile data is available to anyone who visits the accounts of the users concerned. However, the phishing risk is clearly amplified once such a hoard of profiles is collected together in a well-structured database. It isn’t known at this time how long the database was exposed without a password before the August 1 discovery. The Comparitech report points out that: “Our honeypot experiments show that hackers can find and attack unsecured databases within hours of being exposed.”

I reached out to Social Data, and a spokesperson provided the following statement:

“We collect data and enrich it with additional useful insights solely on behalf of our reputable customers, who use it strictly for the intended purposes. It is extremely sad that this incident has occurred due to a mixture of unfortunate events. However, as soon as we learned of the incident, we fixed it immediately. We have since been closely working with the information security experts on auditing our security infrastructure and increasing the required levels of information security to avoid similar occurrences in the future.”

I have also reached out to TikTok and Google GOOGL -0.7%, who, at the time of publication, were both still looking into the matter and unable to provide a statement. I will, of course, update this story if this changes.

Advice for concerned Instagram, TikTok and YouTube users

Meanwhile, I would advise users of all the services affected, Instagram, TikTok and YouTube, to be especially alert to phishing scams by email or posted as social media comments.

Meanwhile, if your company has any databases “in the cloud” then I would strongly recommend you audit the access permissions and make sure these are not open to anyone who comes looking. Elastic has an excellent guide to securing Elasticsearch deployments.

Original Source

The post 235 Million Instagram, TikTok And YouTube User Profiles Exposed In Massive Data Leak appeared first on Trax News.

Source link

Related Posts

Trump blasts Democratic demands for postal-service money, saying mail-in voting would be ‘fraudulent’
Business

Trump blasts Democratic demands for postal-service money, saying mail-in voting would be ‘fraudulent’

by Markel
May 28, 2022
Warren Buffett traded Goldman Sachs for gold in Berkshire Hathaway’s newly revealed portfolio
Business

Warren Buffett traded Goldman Sachs for gold in Berkshire Hathaway’s newly revealed portfolio

by Markel
May 23, 2022
AP FACT CHECK: Trump Hails Under-Performing China Trade Deal
Business

AP FACT CHECK: Trump Hails Under-Performing China Trade Deal

by Markel
May 18, 2022
Google Lobbies Australian Users Against Plans to Make It Pay For News
Business

Google Lobbies Australian Users Against Plans to Make It Pay For News

by Markel
May 13, 2022

RECOMMENDED

Two teenagers seriously hurt in gas explosions at house as three others rushed to hospital  UK |  News

Two teenagers seriously hurt in gas explosions at house as three others rushed to hospital UK | News

February 2, 2023
Boris Johnson to ‘come out all guns blazing’ over Brexit deal as he eyes comeback |  Politics |  News

Boris Johnson to ‘come out all guns blazing’ over Brexit deal as he eyes comeback | Politics | News

February 2, 2023

MOST VIEWED

  • House prices are rising – but how much might your home be making per day?

    House prices are rising – but how much might your home be making per day?

    0 shares
    Share 0 Tweet 0
  • House prices set to rise despite buyer demand drop

    0 shares
    Share 0 Tweet 0
  • Paige VanZant sends fans into frenzy with teasing near-nude lingerie pics as ex-UFC star awaits bare-knuckle opponent

    0 shares
    Share 0 Tweet 0
  • Johann Gutenberg faces tough questions during news conference

    0 shares
    Share 0 Tweet 0
  • PS5 price rise has sealed the deal: I’m getting an Xbox Series S

    0 shares
    Share 0 Tweet 0
  • Contact

UK WIRE© 2022 All rights reserved | Connect with your Community

No Result
View All Result
  • Politics
  • World
  • Business
  • Science
  • UK News
  • Entertainment
  • Sports
  • Fashion
  • Lifestyle
  • Travel
  • Tech
  • Health
  • Food

UK WIRE© 2022 All rights reserved | Connect with your Community