Threat Actor: @IntelBroker, @EnergyWeaponUser | IntelBroker, EnergyWeaponUser
Victim: Career.go.kr | career.go.kr
Price: Not disclosed
Exfiltrated Data Type: Personal information, usernames, encrypted passwords, contact information, career details
Key Points :
- 1.6 million users’ personal information compromised.
- The breach occurred in August 2024.
- Data secured using Base64(md5) hashing.
- Exposed data includes member numbers, job codes, and educational backgrounds.
- Concerns raised about identity theft and fraud due to data exposure.
A threat actor has allegedly breached the database of career.go.kr, a prominent South Korean career platform, compromising the personal information of 1.6 million users. The breach, purportedly carried out by @IntelBroker and @EnergyWeaponUser, has exposed a wide range of sensitive data, including usernames, encrypted passwords, contact information, career details, and more. The data was reportedly obtained in August 2024, with the threat actor claiming that the information was secured using Base64(md5) hashing.
According to the threat actor, the compromised data includes user details such as member numbers, job codes, educational backgrounds, and login information, among other critical personal identifiers. The alleged breach has raised serious concerns about the security measures in place on the platform, as the exposure of such information could lead to identity theft, fraud, and other malicious activities.
The post Threat Actor Claims Breach of South Korean Career Site Database appeared first on Daily Dark Web.