Italian email service provider Email.it has admitted it has suffered a cyber attack that saw data on more than 600,000 users put up for sale on the dark web.
According to hackers, known as the NN Hacking Group, the attack was carried out in January 2018, when they were able to steal sensitive data from the Email.it server and request a prize.
The stolen data includes information such as passwords in plain text, security questions, email content and attachments for users who register or use free email services between 2007 and 2020.
Email.it claims to have informed the authorities about the violation rather than making payments to hackers.
But NN recently took to Twitter to promote listings on websites hosted on the dark web after their attempts to blackmail the company failed. Data is now sold for 0.5 and 3 bitcoin for each file.
The hackers added that they also had plain text SMS sent using services provided by the email company. The hackers also claimed to have stolen the source code of the Email.it web application.
The company, when receiving violations, said that the hacked server only contained administrative data such as the user’s billing address and because financial details were stored on another server, they were not compromised.
The details of the Business email service were also not affected, and Email.it also confirmed that they had patched the server and notified the local data privacy regulatory authority about the incident.
to request modification Contact us at Here or [email protected]