- Streamelements confirmed that a data violation occurs in a former third
- Hundreds of thousands of clients lost confidential information
- Computer pirates are already using the data to send phishing emails
The provider of cloud -based transmission tools has confirmed the suffering of data violation after a hacker committed one of the old third parties of the company.
“We recently realized a data security incident that involved a third -party service provider with which we stop working last year,” the company said in an advertisement on X. “We can confirm that SMEEmentos servers have not been violated.”
In mid -March 2025, a threat actor with Alias’s “victim” opened a new thread about Breachforums (a popular forum for everything related to cybercrime) and said he had stolen confidential information that belongs to 210,000 clients of streamelements. The files included the complete names of the people, the postal addresses, the email addresses and the telephone numbers, and their authenticity was confirmed by the journalist Zach Bussey, who found his own information in the database.
False updates
Streamelegs is a cloud -based platform that provides live broadcasts tools, including overlays, alerts, chatbot automation and tip services.
While he does not affirm that there is no lack on his side, and he changes the guilt to the unidentified third party, the threat actor says they really committed a streamelet employee with an Infoptealer.
That gave them enough access to exfiltrate the data, with files that contain information generated between 2020 and 2024.
While there are not many things that a threat actor can do with names, email addresses and telephone numbers, they can still participate in identity theft or execute custom phishing campaigns, whose success rate is usually better than generic.
To that end, Streamelegs already warns of its clients that Phishing’s emails began to leave, cheating people with false emails of “data violation.”
“Heads Up: The scammers are using this rape of third parties as bait to send false emails of” data violation “, says a new publication X.” These are not Smallelements.
Do not open, do not click, just report and delete. The violation is under investigation, and we will share updates through official channels when there is more information available. “
The company said it began to reach affected customers to warn them about the possibility of attack. Meanwhile, Bleepingcomputer Reports that the original publication on Breachforums has been eliminated.
Through Bleepingcomputer
