Top 7 Data Breaches in List in 2021

Top 7 Data Breaches in List in 2021

PARLER DATA BREACH

Parler is regarded as an American microblogging and social networking service. It was reported to be hit by a data breach attack as soon as Amazon Web Services removed this application from its servers. The data scraped by hackers included: posts, messages, and video data containing EXIF data — metadata of date, time, and location. One of the dangers of this breach was that the application’s users who verified their registration using a driver’s license or government-issued identity card were revealed.

Date: January 11, 2021

Impact: 70TB of Information leaked.

Link: https://www.techradar.com/news/massive-parler-data-leak-exposes-millions-of-posts-messages-and-videos

 

SOCIALARKS DATA BREACH

Socialarks is a Chinese social media management company/platform. Its database was insecure hence was hit by a data breach attack. The attack exposed account details and personally identifiable information of social media users from Facebook, Instagram, and LinkedIn. The stolen information from various social media handles includes - user’s names, phone numbers, email addresses, profile links, usernames, profile pictures, a profile description, follower and engagement logistics, location, Messenger ID, website link, job profile, LinkedIn profile link, connected social media account login names and company name.

Date: January 11, 2021.

Impact: 214 million data.

Link: https://www.safetydetectives.com/blog/socialarks-leak-report/

 

PARKMOBILE DATA BREACH

ParkMobile is a contactless payment parking application. As a result of a third-party software vulnerability, the data of its customer’s records got exposed. The stolen data includes email addresses, phone numbers, license plate numbers, hashed passwords, and mailing addresses.

Date: April 12, 2021

Impact: 21 million customer records.

Link: https://krebsonsecurity.com/2021/04/parkmobile-breach-exposes-license-plate-data-mobile-numbers-of-21m-users/

 

PIXLR DATA BREACH

Pixlr is a free online photo editing application. Hacker leaked its database containing the records of million users. The leaked records include email addresses, usernames, hashed passwords, user’s countries, whether they signed up for the newsletter, and other sensitive information. The attack on its database occurred the same day as the data breach attack happened on 123RF, a popular stock photo service.

Date: January 20, 2021.

Impact: 83 million user records.

Link: https://www.bleepingcomputer.com/news/security/hacker-posts-19-million-pixlr-user-records-for-free-on-forum/

 

CARTERS DATA BREACH

Carters is an extremely popular baby clothing company. Data breach attack on it happened because of third party company’s online purchased software. The attack revealed the personal and shipping information of customers of this clothing brand. The information disclosed in the data leak includes names, email addresses, billing addresses, phone numbers, purchasing details, shipping tracking IDs, and links.

Date: June 20, 2021.

Impact: 410,000 customers data.

Link: https://www.hackread.com/baby-clothing-giant-carters-data-expose/

 

REVERB DATA BREACH

Reverb is a popular musical instrument

revealed in the attack on the Dark Web. The database contained full names, email addresses, postal addresses, phone numbers, listing/order count, PayPal account email, IP address, and more.

Date: April 24, 2021.

Impact: 5.6 million users’ data.

Link: https://www.technadu.com/5-6-million-records-appear-belong-reverb-users-leaked-online/268241/

 

CALIFORNIA STATE CONTROLLER ‘S OFFICE (SCO) DATA BREACH

A phishing attack was launched on the California state controller’s office. One of the employees fell victim to it, clicked on the malicious link in the phishing email, and gave his credentials away. The hackers had access to internal employee’s accounts for 24 hours. During this time frame, the attackers had permissions to view Personally-Identifying Information (PII) contained in Unclaimed Property Holder Reports. The attackers sent more phishing emails from the compromised account to other employees of SCO.

Date: March 23, 2021.

Impact: more than $100 billion data at stake.

Link: https://krebsonsecurity.com/2021/03/phish-leads-to-breach-at-calif-state-controller/

 

References:

https://www.identityforce.com/blog/2021-data-breaches

https://www.analyticsinsight.net/top-cybersecurity-breaches-happened-in-2021/

https://www.upguard.com/blog/biggest-data-breaches

https://krebsonsecurity.com/

https://www.technadu.com/

https://www.hackread.com/

https://www.bleepingcomputer.com/

https://www.safetydetectives.com/

Share: