StreamElements has reported a serious data breach affecting over 100,000 individuals due to a third-party service provider’s compromise. Sensitive data, including names, addresses, and emails, was accessed via a Redline Infostealer infection that targeted an employee’s credentials, leading to unauthorized access to their merchandise operations. Affected: StreamElements, Gooten.com, over 100,000 individuals
Keypoints :
- StreamElements confirmed a data breach involving sensitive personal information.
- Over 100,000 individuals may have been affected by the breach.
- The breach originated from a third-party service provider, Gooten.com.
- A Redline Infostealer infection compromised employee credentials.
- Stolen data includes names, addresses, phone numbers, and emails.
- The attack was reported on March 24, 2025.
- StreamElements ceased working with the compromised third-party service last year.
- Investigation by Hudson Rock confirmed the breach’s cause and timeline.
- The breach highlights the need for enhanced cybersecurity practices and vendor management.
MITRE Techniques :
- TA0009: Credential Dumping – The Redline Infostealer malware extracted corporate credentials from an employee.
- TA0027: Credential Access – Unauthorized access to StreamElements’ Order Management System was achieved using stolen credentials.
Indicator of Compromise :
- [Email Address] info@gooten.com
- [Channel] vx-underground@twitter.com
- [Date] March 24, 2025
- [Date] July 2023
- [Malware] Redline Infostealer