At a time when the corporates globally are up in arms against the data theft, a hacker has put up a third sale of hacked databases on illegal Dark Web marketplace known as Dream Market. This time the hacker, who goes by the name “gnosticplayers”, has published eight hacked databases having the data for 92.76 million users. The companies whose data has been hacked include GfyCat, the famous GIF hosting and sharing platform, and Onebip mobile payment platform. ZDNet reports that the hacker is selling each database individually on Dream Market, and together, these all eight are worth 2.6249 bitcoin, which is approximately $9,400 (Rs 6.70 lakh).
The publication also claims that gnosticplayers took credit for the hacks and denied being just an intermediary. The hacker intends to sell over one billion user records and then disappear with the money. His current total stands at roughly 840 million records. “My two main goals are: -money -downfall of American pigs,” the hacker was quoted as saying. The report says that the hacker will release some more data, including one from a cryptocurrency exchange. Interestingly, the eight companies have never reported a data breach.
In addition to the data, the hacker also published a message seeking “fair justice” for George Duke-Cohan, a Briton who is part of the Apophis Squad hacking crew. Reportedly, he was arrested last year and sentenced to three years in prison in December. “George Duke-Cohan is a young and talented boy, instead of giving him a chance, the UK govt sends him to prison for three years. Now, he's been told by the American government, that he faces 65 years for the offense he was already sentenced to three years in the UK. It means he will be judged twice,” the message read.
“May this upcoming release of dumps serve as a reminder: When countries claim to respect their citizens, they have duty protect them. I wouldn't be surprised whether George Duke-Cohan ends his life, the UK gov already destroyed him and doing this is like sentencing him to death. If he is not given a fair justice during the upcoming days, weeks, years, more data will be released,” the message added.
Meanwhile, GfyCat has said that they have started a probe into the matter. “We can also confirm that any account databases are strongly encrypted and salted, so no plain text passwords would be in any compromised data," a spokesperson was quoted as saying. Previously, over 617 million hacked accounts were put up on sale by the same hacker, followed by 127 million in the second sale. The data reportedly comes from 16 separate data breaches.