- ShinyHunters reportedly breaches Bumble and Match, stealing internal documents and limited user data.
- Bumble says member accounts and profiles were not accessed during phishing incident
- The group moved from ransomware to data theft, warning companies about phishing and vishing threats
Dating apps Bumble and Match appear to have been hit by a cyberattack at the hands of none other than the famous ShinyHunters gang.
The threat actor allegedly added both companies to his data breach site. For Bumble, they claim to have stolen a treasure trove of data:
“Thousands of internal Bumble documents,” the post says, according to Hackmanac. “Our exfiltration focused on documents designated as restricted or confidential. Files primarily from Google Drive and Slack.”
The party confirms the breach
Bloomberg reported that Bumble, which also owns Badoo and BFF, contacted authorities after one of its contractor’s accounts “was recently compromised in a phishing incident.”
Speaking to the publication, a spokesperson said the threat actor performed “brief unauthorized access to a small portion of our network,” after which he was banned.
Bumble does not believe the attackers accessed the member database, member accounts, the Bumble app, direct messages, or people’s profiles.
Match, on the other hand, also confirmed on January 28 that it suffered a cybersecurity incident that affected “a limited amount of user data.” It is now in the process of notifying affected individuals and states that there is no evidence that user login credentials, financial information or private communications have been compromised.
ShinyHunters has been filling news columns these past few weeks, after successfully breaking into some big companies and supposedly targeting “hundreds” of others. They are primarily involved in phishing and vishing (voice phishing) and are going after Okta, Microsoft, and other single sign-on (SSO) platforms.
The group started as a ransomware operator, but at one point decided to abandon the encryption part and focus solely on data exfiltration. Apparently, this process is cheaper, faster and more efficient, but equally lucrative.
Other ransomware operators are allegedly doing the same. Organizations, and primarily US-based companies, are warned to be wary of people calling on the phone claiming to be IT and technical support.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
