Hackers have got reportedly compromised technology firm BGR’s (Boy Genius Report) India site and dumped its data containing emails, hashed passwords and other info on the Dark Web.
According to data breach monitoring service ‘Under the Breach,’ hackers shared SQL databases from unprotected AWS (Amazon Web Services) buckets and one archive belongs to the BGR site in India.
The data leak was first reported by experts from the security firm Under the Breach. The full SQL backup includes emails, hashed passwords and other info.
“Actor dumps the MySQL database of http://bgr.in (@BGRIndia) a huge Indian technology news site! 2,000,000 monthly visitors, @BGR 11,650,000 monthly visitors! Hacked due to exposed s3 AWS bucket. Usernames, emails, passwords and more. Full SQL backup” tweeted Under the Breach.
In a statement published on its website, BGR Friday stated an inner review has found that the exposed email ids and passwords belong to ex-employees of BGR India.
“All these email ids are now defunct and no longer in use. We, at BGR India, give security and data privacy with maximum importance. At no point need any of our users to become concerned about their personal data being misused,” stated the company.
A “full SQL dump” refers to all the posts on the site along with access credentials for authors and administrators.
The experts from Under the Breach said that credentials were stored in hashed form, converted with a function in WordPress.
“In most cases, hackers pay to have the hashes cracked. On some specialized sites, this service is usually advertised at an affordable price.”
According to the hackers, the overall dump contains at least 36,000 emails and logins for other affected websites like tradinggame.au.com and S3 Production.
Experts from Under the Breach found 16 SQL dumps contained in a seven ZIP archive, said the report.
Launched in Oct 2006 in the united states, Boy Genius Report is a well-known destination for breaking consumer electronics news as well as exclusive early looks at unannounced products.
It started as a column written by Internet personality Jonathan Geller, who later converted it into a website.