- ShinyHunters reportedly breach Bumble and Match and steal internal documents and restricted user data
- Bumble says member accounts and profiles were not accessed during the phishing incident
- The group switched from ransomware to data theft and warned companies about phishing and vishing threats
Dating apps Bumble and Match appear to have been hit by a cyber attack at the hands of none other than the infamous ShinyHunters gang.
The threat actor allegedly added both companies to his data leak site. For Bumble, they claim to have stolen a treasure trove of data:
“Thousands of internal documents from Bumble,” the post reads, according to Hackmanac. “Our exfiltration focused on documents designated as restricted or confidential. Files primarily from Google Drive and Slack.”
Match confirms the breach
Bloomberg reported Bumble, which also owns Badoo and BFF, contacted law enforcement after one of its contractors’ accounts “was recently compromised in a phishing incident.”
Speaking to the publication, a spokesperson said the threat actor made “a brief unauthorized access to a small part of our network” after which they were expelled.
Bumble does not believe the attackers gained access to the member database, member accounts, the Bumble application, direct messages or people’s profiles.
Match, on the other hand, also confirmed on Jan. 28 that it suffered a cybersecurity incident affecting “a limited amount of user data.” It is now in the process of notifying affected individuals, and claims there is no evidence that user login information, financial information or private communications have been compromised.
ShinyHunters have filled news columns for the past few weeks, having successfully breached a few large companies and reportedly targeting “hundreds” of others. They are mostly involved in phishing and vishing (voice phishing) and go after Okta, Microsoft and other single sign-on (SSO) platforms.
The group started out as a ransomware operator, but at some point decided to abandon the encryption part and focus solely on data exfiltration. Apparently, this process is cheaper, faster and more efficient, yet just as lucrative.
Other ransomware operators are reportedly following suit. Organizations, and primarily US-based businesses, are warned to be wary of individuals calling in claiming to be IT and technical support.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
