data breach
YellowPages.com is a well-known online directory service that helps users find businesses, services, and contact information in the United States. It serves as a digital extension of the traditional Yellow Pages phone book, providing a wide range of business listings, customer reviews, and maps.
Breach Details
- Date of Breach: Early July 2024
- Discovered: August 8, 2024
- Threat Actors: The breach was reportedly executed by two individuals identified as @Valerie and @Uriel, who appear to be seasoned hackers.
- Data Compromised: The breach exposed more than 22 million records of scraped data, which includes:
- Source URLs
- Business names
- Home pages
- Email addresses
- Phone numbers
- Full addresses
- Additional business-related details
- Exposure: The data has been made available on a dark web forum, with a sample of 50,000 lines provided for verification. This sample likely includes sensitive information that could be used for phishing attacks, identity theft, or further exploitation.
Threat Actor Profile
- Handle: ExploitRipper
- Affiliation: MVP User (a term typically used in underground forums to denote experienced and trusted members)
- Reputation: ExploitRipper has a high reputation score of 51, indicating trust and credibility within the cybercriminal community.
- Joined: September 2023
- Notable Activity: ExploitRipper is known for sharing and selling breached data, as well as possibly participating in hacking forums to exchange information and tools.