SECURITY
SECURITY
SECURITY
Data breach exposes 122M records from DemandScience following initial denials
A database with information on 122 million people that has been circulating since February 2024 has been confirmed to have been stolen from the business-to-business demand generation platform DemandScience US LLC.
The database first appeared for sale on the infamous hacking forum BreachForums from a user called “KryptonZambie,” who claimed that the data was stolen from Pure Incubation, the name that DemandScience was previously known. However, at the time, DemandScience denied that the data belonged to it.
“All our systems are 100% operational, and we have not found any indication that a hack or breach to any of our systems or data has occurred (all are secured behind firewall/VPN access/Access control/intrusion detection systems),” a spokesperson for the company said at the time. “We are continuing to monitor the situation, so it would not be appropriate to expand further at this point.”
Bleeping Computer, which obtained the response from DemandScience, followed up again but did not receive a response from the company.
Forward to August and the same data set was then offered by KryptonZambie on BrechForums for eight credits — the equivalent of a few dollars, making the data close to free.
Now, security researcher Troy Hunt from Have I Been Pwned wrote Wednesday that the data is authentic and that its origin is DemandScience. The confirmation came from someone exposed in the leak who contacted DemandSciene and was told that the leaked data “originated from a system that had been decommissioned two years ago,” despite DemandScience previously denying any links to the data.
Aaron Walton, threat intelligence analyst at managed detection and response firm Expel Inc., told SiliconANGLE via email that “all businesses should think about their data exposure in terms of risk” and that “in the case of data aggregation platforms, the theft of their data equates to the theft of their most prized possession.”
“With this data stolen and made public, it allows for a significant impact on their business,” Walton said. “That is, why should a company pay DemandScience if they can find the information they want for cheap?”
A breach like this may go undetected if organizations aren’t monitoring the full breadth of their security, he added.
“In this case, it sounds like some tech was decommissioned but not fully sunsetted,” he said. “When possible, it is best to have a strong process to confirm that assets are fully decommissioned.”
Image: SiliconANGLE/Ideogram
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
