United States firearms buying and selling site, Guns.com is reported to have been hacked. Customer data to data related to the site are shared free of charge by hackers on raid forums or hacker forums.
Hacked User Data
The data uploaded by anonymous hackers shows important information, ranging from data on gun buyers, including user IDs, full names, email addresses, telephone numbers and passwords. It was not clear how much data was distributed.
The most worrying thing, hackers did not escape their home address and zip code information.
Launching Gizmodo, the hackers initially only stated that their action was to stop the business of buying and selling weapons on Guns.com. However, recently hackers have also uploaded data related to the site and shared it on the Raid Forums.
In that data, raid forum users can also find out data about firearms providers who sell through Guns.com.
The leaked data contains extremely sensitive information from Guns.com administrators and customers. The leaked data included user IDs, full names, nearly 400 thousand email addresses, passwords, addresses, postal codes, cities, statuses, Magneto IDs, phone numbers, and account creation dates quoting Hackread.
Other Leaked Folders
Other leaked folder consist of details of customer’s bank account including full name, bank name, account type, and Dwolla ID. However, the credit card number or VCC number is not leaked.
Additionally, the Excel files in the database appear to contain sensitive Guns.com login details. It’s including their WordPress, MYSQL, and Cloud (Azure) administrator credentials. However, it is unclear whether these credentials are up to date, old, or have been changed by a site administrator in the midst of a breach.
On January 13, 2021, Guns.com published a letter on its website acknowledging the violation. However, Guns.com blames a third party for causing the incident.
Read now: Cyber Threats 2021: Aim for 5G Networks Until Covid-19 Mode