Earlier this month we have detected several Telegram channels that share with their followers various data breaches. This time database of 10GB worth of data from companies like SuperVPN, GeckoVPN, and ChatVPN has been shared online and is now available to anyone for download.
On May 4th, 2022, a database containing the personal details and login credentials of 21 million users was leaked in a Telegram group. What’s noteworthy is that the dump also exposed the data of VPN users including popular VPNs like SuperVPN, GeckoVPN, and ChatVPN.
Leaked information contains:
- Full names
- Usernames
- Country names
- Billing details
- Email addresses
- Randomly generated password strings
- Premium status and validity period
Further probe indicated that the leaked passwords were random, hashed, or salted without collision, therefore each was different and much more difficult to crack. A majority of the email IDs, about 99.5%, were Gmail accounts.
The database was previously put up for sale on the Dark Web last year, but currently, it is available on Telegram for free.