Recent Data Breaches and How Cloaked can Help

‍Telegram Data Leak

On June 5, 2024, a staggering 122 GB of data was scraped from thousands of Telegram channels, revealing 1,748 files with 361 million unique email addresses. Of these, 151 million were hacker-salivating new credentials  placed in major breach databases. This data trove includes passwords and the specific websites these credentials pertain to, making it a goldmine for cybercriminals. 

This incident highlights a paradox: Telegram's privacy-preserving features, designed to protect users, also make it a haven for sharing compromised credentials. The data breach exposed the dual nature of Telegram, serving both as a social media platform and a private communication channel, which can be easily hidden from public view. 

Telegram has become notorious for facilitating the distribution of data breaches. As an easy-to-use platform, it enables users to set up channels and share information anonymously, making it a hotspot for "combolists" – combinations of email addresses and passwords used in credential stuffing attacks. This breach, sourced from 518 different Telegram channels, underscores risks associated with these anonymous sharing platforms.

The data, sourced from 518 channels, contained 1,748 files. Some were small, while others spanned gigabytes and contained tens of millions of rows. This breach appears to be the result of infostealer malware, which captures credentials as they're entered on compromised machines. Verifications on several services like Nike and Footlocker confirmed the existence of these accounts, validating the breach's scope and reality.  

Ironically, while Telegram aims to offer privacy, it doesn't use end-to-end encryption by default, making it vulnerable. Critics like Signal's President Meredith Whittaker have even labeled Telegram as "the least secure of messaging and social media services." Jarrad Hope, co-founder of Status, also pointed out that centralized servers, like those used by Telegram, pose risk. 

In an interesting twist, Telegram has just launched a new in-app currency, Telegram Stars, to facilitate payments for digital goods and services. Announced by CEO Pavel Durov, this new feature comes close on the heels of the data breach news, leading some to speculate if it's a distraction tactic. 

‍

‍

The Ticketmaster DataBreach

The Ticketmaster breach was linked to a malicious customer service chatbot provided by a third-party company, Inbenta. Ticketmaster used this chatbot on its payment pages without necessary security precautions, leading to the exposure of private personal information such as names, email addresses, telephone numbers, payment details, and login credentials.

The breach impacts users who made or attempted to make purchases between September 2017 and June 2018​​. Early warnings from Monzo, an online bank, about suspicious activity related to Ticketmaster transactions were initially ignored, which delayed breach​​ recognition. 

Interestingly, on a related (or unrelated) note, Taylor Swift passwords are the most compromised, highlighting a trend where popular culture influences weak password choices.

According to Hackread, the hacking group ShinyHunters released a 1.3TB database on the newly-reopened BreachForums. Sensitive information on 560 million users, such as names, postal addresses, email addresses, phone numbers, ticket sales, event details, order information, and payment card data was on the market. $500,000 is the initial asking price. ShinyHunters attempted to extort Ticketmaster-Live Nation, but this time Ticketmaster was “the quiet one.”

United Health Group Data Breach

The hackers, identified as part of the cybercriminal group AlphV or BlackCat, exploited vulnerabilities in the systems to access sensitive data. Despite efforts to proactively secure the data, including a ransom payment, the breach highlights security challenges and the constant hacker barrage faced when protecting personal information in healthcare.

Cyberattacks like this are often the result of sophisticated tactics from organized cybercriminal groups. They target large data repositories to flip for the personal data’s  high value, using stolen data for ransom or selling it on the dark web. The incident at Change Healthcare was particularly severe because it processes about 50% of U.S. medical claims, making it a prime target. 

AT&T Data Breach

This massive incident left 73 million individuals, both current and former AT&T customers, exposed on the dark web. The breach, dating back to 2019 or earlier, included sensitive information like Social Security numbers. The incident exposed names, email and physical addresses, dates of birth, phone numbers and US social security numbers.

AT&T's admission of this breach highlights a sobering reality: data privacy is more of a hope than a guarantee in today's world. With information from as far back as 2019 compromised, including Social Security numbers and detailed personal data, the breach underscores the ever-present threat lurking in the shadows of our digital lives.

The fact that this extensive amount of data was leaked to the dark web adds a layer of urgency and concern. It means that this information is now potentially in the hands of individuals with malicious intent, making the consequences of this breach far-reaching.

How Cloaked Helps you Begin your Privacy Journey Again

In times like these, protecting your personal information is more critical than ever. That's where Cloaked comes in. At Cloaked, we offer a unique approach to safeguarding your identity online. Here's how we can help:

• Cloaked Data Removal: With Cloaked, you can scan (for free) and understand what information about you has already been breached and is currently being sold by data brokers; and with Data Removal, Cloaked can remove your personal info from 120+ data brokers and other sites, so you don't get spammed, scammed, and doxxed.
• Generate Unique Cloaked Identities: With Cloaked, you can create unique phone numbers, email addresses, and more. Imagine if Ticketmaster users had used Cloaked credentials; the breach wouldn't have exposed their real contact details, significantly reducing the risk of identity theft and fraud.
• Client-Side Encryption and Zero-Knowledge Access: Your data is protected with encryption that even we don't have access to. This ensures that your sensitive information is safe from prying eyes, even in the event of a data breach. All your messages, emails, and texts are encrypted, keeping your information secure and private. This means that only you have access to your data, adding an extra layer of protection against cyber threats.
• Cloaked Pay (currently in family/friends  beta): With Cloaked Pay, you can make transactions without exposing your real payment details. This feature protects your financial information during online purchases, providing peace of mind when shopping on platforms like Ticketmaster.
• $1 Million Identity Theft Insurance: In the unfortunate event of identity theft, Cloaked subscribers get up to $1 million in insurance coverage. With this robust protection, you can rest easy knowing that you have comprehensive coverage to mitigate the effects of identity theft.

By using Cloaked, you can interact, shop, and explore the internet without ever compromising your personal details. Sign up for Cloaked today and take control of your online privacy!