- Security researchers find threat actor advertising a larger database
- The archive is reportedly belonging to virtualmacosx.com
- It contains passwords, bank data and other sensitive information
Thousands of items belonging to virtual macosx users, including banking information, have been leaked on a popular hacking forum recently, experts have claimed.
CyberSecurity -Scientists Safety Detectives say they found a new thread on a popular Clearweb -Hacking Forum (a forum that hosts the mainstream internet), where the poster offered a database to anyone who would comment or otherwise interact with the thread for free.
Allegedly, the database belongs to customers at virtualmacosx.com, a cloud-based service that provides virtual Mac OS X servers and desktops and contains 176,000 lines, split over three separate .TXT files. In these files there were people’s user -IDs, full names, company names, E -mail addresses, mailing addresses, phone numbers, passwords, password reset, bank names, banking types, bank codes, bank accounts and various support tickets.
Operations stable
The threat also contained a 34-line sample of the database, said security detectives, adding that their superficial analysis confirmed the authenticity of the data.
“Although the data appeared genuine, and we then indicate in invoices sent to virtual macosx, we could not definitively confirm that the data belonged to virtual macosx’s customers, due to ethical considerations we refrained from testing the exposed credentials,” the researchers said.
We would argue that it is unusual for cyber criminals to give away a brand new database that contains both bank data and passwords for free, so it may also be that the database is either false or reused from a previous violation. A quick Google search showed no previously reported violations on virtualmacosx.com.
In any case, users should definitely reset their passwords, including on other platforms where they may have used the same set of credentials.
In addition, they should closely monitor their bank accounts for any suspicious transactions. Finally, they must be looking for well-developed phishing emails that mimic virtualmacosx.com.
