Earlier this month, datasets containing over 240,000 records of the Utah Gun Exchange website were posted openly on a popular hacking forum. In total, 195,000 user records for the utahgunexchange.com and 45,000 records for their video, site UGETube, were exposed.
Researchers analyzing the data also spotted two additional stolen databases belonging to a Utah-based hunting site (muleyfreak.com) and herbs site (deepjunglekratom.com), both linked to the Amazon cloud server that housed the data for the popular gun exchange site.
Although the exposed data may vary depending on the website, email addresses, login names and hashed passwords are present in each data leak.
Utah Gun Exchange did not immediately react to the news, but earlier this week, it published a data breach statement informing customers about the incident.
“We have recently learned of an attack that affects you as our users,” the notification reads. “Specifically, we learned that Utah Gun Exchange and UGETube were the target of an attack that resulted in the exposure of some of your information.”
The letter underlines that most the stolen information is publicly available when posting a listing on their website, and that no financial information was part of the exposed data.
“All transaction information is handled directly through PayPal using their secure and internal systems,” the company said. “UGE Tube and Utah Gun Exchange do not see or handle any financial information including credit/debit card numbers that are entered in during the purchase process. Therefore transactional information such as credit/debit card or other such financial data was not part of the data compromised.”
However, stolen hashed passwords can have serious consequences for users. Any bad actor who downloaded the leaked data from the forum could try to decrypt user passwords, and consequently take over accounts that share the same login credentials.
It’s recommended for all users to change the login password for utahgunexchange.com, and any other online account that shares the same username and password combination. Utah Gun Exchange is also asking its users to look out for phishing attacks and inform the business of any suspicious communication.
As a result of the data breach, “Utah Gun Exchange and UGETube took steps to remove the offending code and have identified the vulnerability,” and are committed to reinforcing their security to prevent similar incident in the future.
*** This is a Security Bloggers Network syndicated blog from HOTforSecurity authored by Alina Bizga. Read the original post at: https://hotforsecurity.bitdefender.com/blog/utah-gun-exchange-confirms-data-breach-after-bad-actors-publishes-stolen-customer-records-online-23967.html