Hacker Claims Theft Of 1 Billion Police Records In China's Largest Data Breach Ever
By taking down RaidForums and arresting its founder, the Department of Justice hoped to disrupt the illegal sale of stolen information online. However, shortly after RaidForums went offline, a new site known as Breach Forums appeared on the web, presenting itself as a successor to RaidForums and sporting almost identical visual design. The new site’s users have wasted no time sharing databases containing all the information previously shared on RaidForums, as well as newly stolen information. Now, Breach Forums looks to be home to China’s largest data breach.
- Name
- Address
- Birthplace
- Age/birthday
- Sex
- Height
- National ID number
- Phone number
- All criminal activity and cast details
The forum post includes a download link for a significant chunk of sample data, and Karen Hao, a reporter for the Wall Street Journal, tried calling some of the numbers listed in the sample data. She was able to talk to nine different people who confirmed the exact information listed in the data set. Changpeng Zhao, CEO of Binance, also stated on Twitter that his company’s threat intelligence has detected 1 billion resident records for sale online and speculated that the data leak was likely the result of a bug in an Elastic Search deployment used by a government agency. The CEO announced that Binance has stepped up its user verification process for potential victims of the data leak and urged all other platforms to enhance their security measures as well.
If the actor responsible for the data breach used these login credentials to access a government database and exfiltrate data, it’s almost surprising that the data breach didn’t occur earlier. The blog post dates back to August 2020, meaning the login information has been exposed for almost two years now. It’s possible that other actors may have used these same login credentials to surreptitiously access a government database in the past, but never attempted to exfiltrate such a large database.
We have yet to see whether ChinaDan does actually possess a recently obtained database containing the personal information and police records of 1 billion Chinese residents, but, if the Breach Forum user is telling the truth, this data breach would be the largest in China’s history.