World’s largest supplier of PowerPoint content hacked

Learn more details in this article.

On August 25, 2022 it became known that “world’s largest supplier of innovative, creative and highly effective PowerPoint content” has been hacked. Original database has been extracted by threat actor back in April 2021, the incident hasn’t been known about till today.

1.4 Million users have been affected by data leak belonging to SlideTeam service. Among key clients of this service we have found: Visa, MasterCard, Nike, Sony, Citi Bank, HSBC, JPMorgan, Bank of America, Microsoft, American Express, AT&T, Adobe, Samsung, Intel, NASA, Philips, Verizon, Netflix, Louis Vuitton, Oracle, SAP, Mercedes-Benz, IBM, Accenture, Cathay Pacific, Deloitte, Singapore Airlines, Wells Fargo, T-Mobile and HP.

Photo by NordWood Themes

As company describes itself:

SlideTeam is a premier Research, Consulting and Design agency that develops and templatizes industry processes and best practices, frameworks and models across all industry and verticals to help customers present their strategies effectively and convincingly. In addition, SlideTeam compiles data and statistics from thousands of sources over a wide range of topics to help customers make intelligent decisions. We develop and present our research in the form of fully editable PowerPoint templates to make it easy for our customers to create presentations based on their individual requirements.

SlideTeam.net

Data leak details

The breach included personal information of 1.4 million users. Leaked data include email addresses, first and last names, as well as Magento hashed passwords. The hacker added that: “i don’t remember the attack vector but it was a pivot from the staging server i believe”.

Kaduu Team has analysed leaked database and has been able to identify in this data breach:

  • 1144 AT&T corporate accounts
  • 953 Verizon corporate accounts
  • 419 Accenture corporate accounts
  • 280 Citi corporate accounts
  • 248 HP corporate accounts
  • 246 Deloitte corporate accounts
  • 156 Samsung corporate accounts
  • 151 Bank of America corporate accounts
  • 140 Intel corporate accounts
  • 135 SAP corporate accounts
  • 134 Oracle corporate accounts
  • 133 Philips corporate accounts
  • 125 Wells Fargo corporate accounts
  • 118 HSBC corporate accounts
  • 113 Microsoft corporate accounts
  • 75 Nike corporate accounts
  • 70 JP Morgan corporate accounts
  • 65 MasterCard corporate accounts
  • 60 Adobe corporate accounts
  • 52 T-Mobile corporate accounts
  • 40 Visa corporate accounts
  • 38 IBM corporate accounts
  • 28 NASA corporate accounts
  • 24 Sony corporate accounts
  • 12 Netflix corporate accounts
  • 7 Cathay Pacific corporate accounts
  • 6 AmEx corporate accounts
  • 6 Louis Vuitton corporate accounts
  • 2 Mercedes-Benz corporate accounts
  • 2 SingaporeAir corporate accounts

Stay up to date with exposed information online. Kaduu with its cyber threat intelligence service offers an affordable insight into the darknet, social media and deep web.