Thursday, June 17, 2021

Hackers are selling "the data of millions of Audi customers" apparently found in unsecured Microsoft "Azure blobs" in the cloud


affected data included: "first and last name, personal or business mailing address, email address, or phone number. In some instances, the data also included information about a vehicle purchased, leased, or inquired about, such as the Vehicle Identification Number (VIN), make, model, year, color and trim packages." But for 90,000 victims, the data also included "more sensitive information relating to eligibility for a purchase, loan, or lease.


[Hacker] 000 said she worked with another hacker who goes by General Badhou3a. 000 explained that she set up a script to scan the internet for exposed Azure blobs, which are essentially data repositories stored in Microsoft's cloud.