More than 25 million user records, belonging to popular math app Mathway, are being sold on the dark web. According to ZDNet, the hack is the latest in a long line of security breaches carried out by a hacker going by the name of ShinyHunters, the threat actor also responsible for intrusions at Tokopedia, Wishbone, Zoosk, and others. For the past few months, says ZDNet, the hacker has been breaching companies and putting their data on sale on a dark web marketplace and internet hacking forums. In total, it is believed that the hacker has sold access to more than 200 million user details. In an interview with ZDNet, the hacker said he had breached Mathway in January 2020 by accessing the company’s backend, dumping the database, and then removing access to avoid getting detected. But, since the start of May, the hacker has been selling the records on the dark web and on a popular hacking forum.
Source: Security Magazine
