data breach
DigitalOcean is a prominent American cloud infrastructure provider, catering to developers and businesses by offering scalable compute platforms. Established in 2011, DigitalOcean has rapidly grown to serve a large community of developers and enterprises, providing services that include virtual private servers (Droplets), managed databases, and Kubernetes-based solutions.
Breach Details
- Date of Breach Announcement: June 25, 2024
- Data Compromised: Personal contact information including names, email addresses, physical addresses, and possibly some financial data.
- Size of Data Dump: 1.4 GB
- Format: SQL database dump
- Threat Actor: TopiAx, an advanced user in a cyber forum known for data breaches and illegal data distribution.
- Breach Data Details:
- Database: DigitalOcean
- File Size: 1.4 GB
- File Type: SQL (.sql)
- Sample Data: The screenshot shows a snippet of the SQL data dump, including SQL
INSERT
statements. Each entry consists of:- Contact Data: Appears to be personal information including:
- Full names
- Email addresses
- Physical addresses
- Other potential personal identifiers (such as affiliation or location)
- Timestamps indicating the data entries' date and time
- Some entries contain what looks like 'ca_cpt' followed by numerical codes, potentially indicating some category or type of data.
- Contact Data: Appears to be personal information including:
Threat Actor Profile
TopiAx is known in the cyber community for:
- Regular participation in cyber forums since October 2023.
- Posting 79 threads and 29 comments.
- Engaging in the sale and distribution of stolen databases, often containing sensitive personal and financial information.
- Having a reputation score of 1, indicating relatively recent but impactful activity within the forum.