More Than 150 Million Raychat App User Records Leaked
Table of Contents
- By Steven
- Published: Aug 11, 2022
- Last Updated: Aug 11, 2022
A hacker has illegally accessed and leaked several hundred million user records from the popular Raychat app. Raychat, especially popular in the Middle East, is now in damage control after this digital infiltration. Let's take a look at the details of the hack to give readers a better sense of what occurred and what can be done to prevent similar threats from wreaking havoc in the future.
How Did the Attack Occur?
The hacker who is allegedly responsible for the data leak insists the Raychat app information was downloaded when the business mistakenly exposed its database on the web between the final month of 2020 and January of the new year. However, the attack did not occur until the final months of 2021.
The business and social media messaging platform lost information ranging from customer names to email addresses, IP addresses, messenger IDs for Telegram, passwords, and more. The hackers published the entire database on a Russian hacking forum after the attack. Fast forward a couple of months later, and the Raychat hack became the talk of the cybersecurity community.
There is still a question as to whether records stolen from the Raychat app servers resulted from a prior data leak after hackers exploited a misconfigured database. Rewind to the first month of 2021, and the messaging platform had errantly exposed its entire database through a misconfigured server. That database was of critical importance in the context of digital security as it contained nearly 300 million accounts with information ranging from full names to encrypted chat message logs, metadata, passwords, and more.
How Was the Hack Publicized?
It is especially interesting to note that the online message boards referred to as Raid Forums have served as the initial platform to reveal the attack. The hacking message board featured a thread posted by a threat actor who insisted the Raychat hack was his or her work. The hacker noted that the data in question was downloaded before the subsequent attack.
Why is the Attack Significant?
The data leak has the potential to lead to identity theft. The information of millions of residents of the Middle East is now in the hands of hackers who are likely intent on selling that data for top dollar. As a result, the victims will likely find accounts opened in their names.
The threat actor behind the data breach is also likely to sell the information to phishing scammers and other scammers. Those criminals will undoubtedly imitate representatives from Raychat in an attempt to steal even more information, including Raychat customers' financial information.
How Can Similar Attacks be Prevented?
Business owners and everyday people alike are encouraged to take defensive steps to thwart the seemingly endless flurry of digital aggressions, some of which are unknown to the cybersecurity community. The constant influx of new and dynamic threats on the digital landscape reinforces the importance of enhancing computer, network, and web security layers with the industry’s latest solutions.