Vengeful hacker exposes DomainFactory customer banking data and passwords
by DatyDaity - July 12, 2018 at 10:15 AM
A German web-hosting firm has suffered a severe data breach because one of its customers reportedly owed money to the attacker. The company only learned of the breach when the hacker announced it himself, on its support forum.

On Jan. 29, the attacker compromised customer names, company names, various addresses, telephone numbers, DomainFactory passwords, dates of birth, bank names and account numbers, and Schufa scores (German credit score).

However, the company and its customers only learned of the breach six months later, on July 3, when he made an entry on the DomainFactory support forum to break word of his deed. As proof, he published the data of a number of customers for everyone to see.

The reason behind the attack, according to German news outlet Heise Online, was to obtain the credentials of an customer who owed the attacker money. When he noticed that DomainFactory was reluctant to acknowledge the breach, he decided to make it public.

DomainFactory’s explanation, however, differs a bit. In a forum post, the web hosting firm explains (machine-translated from German):

“The result of an initial investigation was that after a system change that took place at the end of January, certain customer information was unintentionally accessible to third parties via a data feed. This data feed was triggered when customers made changes to their DomainFactory accounts, but they caused system errors when they were saved.”

DomainFactory said it quickly shut down the forum to prevent further access to the leaked data. The firm then hired an unnamed security company to focus additional resources on mitigation.

The firm urges all customers to change their DomainFactory passwords as soon as possible. These include customer passwords, phone passwords, e-mail passwords, FTP / live disk passwords, SSH passwords and MySQL database passwords. Detailed instructions on how to do that can be found here:

Update: news story updated to replace “employee” with “customer” in the paragraphs mentioning the reasons for the attack. Thanks to @SecurityCharlie on Twitter for clarifying that.

Source :
nigga hacks their site and flex on their own forum, what a legend
Legendary troll ! "Knock Knock. How's there ? Your hacker."
Waouw. And the data are public now?
This forum account is currently banned. Ban Length: Permanent (N/A).
Ban Reason: 1. Shitposting in General. 2. Automation of posts to leech.
(July 13, 2018 at 10:15 AM)gipollma Wrote: Waouw. And the data are public now?

The data should be somewhere out there, still haven't found it though.

I'd be willing to throw some coins at anyone that provides information about where to find this data, or maybe even he leak itself.
I hope we get this information fast
Good security Face palm.
Nice article and obviously nice leak lmfao.
I've been hunting for it, I can't find it.
That stuff must worth so much, it never will be public. I would love to check that out
I'm also on the lookout for this database, good if we get it soon.
Think the data wouldnt be sold. The Hacker would get the data from onecustomer, and not more :-( !

Possibly Related Threads…
Thread Author Replies Views Last Post
Hacker who used ransomware encryptor revealed in Belorussia MetaHummer 0 195 August 06, 2020 at 01:14 PM
Last Post: MetaHummer
Brazil's Biggest Cosmetic Brand Natura Exposes Personal Details of Its Users Alpha555 4 557 May 21, 2020 at 05:24 AM
Last Post: vladthefucker
Google Firebase misconfiguration exposes data of 20k+ Android users darkmatt3r 0 354 May 14, 2020 at 01:48 PM
Last Post: darkmatt3r

 Users browsing this thread: 1 Guest(s)