A company known as River City Media (RCM) has accidently leaked the email addresses of 1.37 billion users due to the failure of setting up a password protection on their remote backup storage. In addition to email addresses, the database also included thousands of real names, IP addresses, and even physical addresses. In all, some 200GB of data had been exposed for several months, leaving it vulnerable to cyberattacks.
The leak was found by Chris Vickery, a security researcher for MacKeeper. In his blog post published on Monday, March 6, Vickery explains that MacKeeper worked closely with CSOOnline and Spamhaus after the discovery of the files in January. Vikery and his team were able to trace the files back to RCM, a notorious spam operation.
?RCM masquerades as a legitimate marketing firm while, per their own documentation, being responsible for up to a billion daily email sends,? says Vickery.
Vickery believes the company was able to obtain the almost 1.4 billion email addresses through offers such as credit checks, sweepstakes, and education opportunities. There is also evidence that similar spam companies also contributed to the list. While some percentage of the user may have fallen for RCM?s spam offerings, Vickery also suggests that the company used a variety of more advanced techniques to lure users to give up their email address.
?One is called co-registration,? explains Vickery, ?That?s when you click on the ?Submit? or ?I agree? box next to all the small text on a website. Without knowing it, you have potentially agreed your personal details can be shared with affiliates of the site.?
The leak is blamed on a failed remote backup attempt, which left a ?snapshot? of the company data from January 2017 exposed to the internet. Anyone who found the data would be able to access internal chatlogs, emails, and the 200GB email collection RCM had acquired. According to Vickery, the failure was due to RCM failing to put a password up on their repository, leaving it poorly secured.
Since the release of the break, Spamhaus has blacklisted the entirety of RCM?s infrastructure. The research team working on the case have also reached out to law enforcement agencies about the data leakage and suspected illegal spamming.
Putting security and proper backup on the back burner can cause serious damage. Don’t let your company fall pray to the thousands of threats that lurk just a click away. Contact Info Advantage today at (585) 254-8710 to speak to a technology consultant about your security and backup environment.