Gnosticplayers’ is back with breached data sale on the Dark Web

Gnosticplayers, the menacing hacker notorious for exposing and selling millions of earlier this year has now come out with a new set of, has yet again come out with 26 million new records from 6 companies across the world.

The companies that fell prey to Gnosticplayers data breach are GameSalad, Estante Virtual, Coubic, LifeBear, Bukalapak, and YouthManual.

Bukalapak, an Indonesian e-commerce company was affected the most as it had 13.2 million (the largest of the six) leaked was from, while the smallest portion (1.12 million) of the dump was from YouthManual, a website aimed to help Indonesian students in their career. GameSalad, Estante Virtual, Coubic, and LifeBear each leaked 1.5, 5.45, 1.5 and 3.86 million records respectively. Poor security implementations adopted by these companies are to be blamed, says Gnosticplayers.

It is to be noted that, this attack is the fourth one crafted by the attacker. The first batch contained 620 million user records, while the second and third batches contained 127 million and 93 million records respectively. Interestingly, the data released by the hacker mostly contains records from previous breaches, the sale combines to a large amount of data, something the cybercriminals could leverage it for future credential stuffing attacks, leading to further damage. Also, Gnosticplayers stated that only a portion of the data in his possession.

“I came to an agreement with some companies, but the concerned startups won't see their data for sale. I did it that's why I can't publish the rest of my databases or even name them,” says Gnosticplayers.