D-Hyperlink has launched an investigation after a hacker supplied to promote info allegedly stolen from one in all its networks and has decided that the claims are exaggerated.
On October 1, a consumer of the brand new BreachForums cybercrime web site claimed they’d breached the inner community of D-Hyperlink in Taiwan, which gave them entry to a database storing the data of three million prospects, in addition to supply code for the D-View community monitoring product.
The hacker claimed to have stolen 1.2 Gb of information, together with names, electronic mail addresses, postal addresses, cellphone numbers, and the time and date of the final login, and supplied to promote the recordsdata for $500.
“This does embody the data of MANY authorities officers in Taiwan, in addition to the CEOs and staff of the corporate,” stated the vendor, who additionally made obtainable a small pattern to exhibit their claims.
D-Hyperlink stated it discovered of the hacker discussion board publish on October 2 and employed Pattern Micro to help with its investigation. The probe has been accomplished and the networking tools maker has confirmed struggling a data breach, however described the hacker’s claims as inaccurate, exaggerated and deceptive.
“The information was confirmed not from the cloud however seemingly originated from an outdated D-View 6 system, which reached its finish of life as early as 2015. The information was used for registration functions again then. Thus far, no proof suggests the archaic knowledge contained any consumer IDs or monetary info. Nevertheless, some low-sensitivity and semi-public info, comparable to contact names or workplace electronic mail addresses, had been indicated,” the corporate defined.
D-Hyperlink stated the attacker gained entry to its methods after an worker fell sufferer to a phishing assault. Nevertheless, it believes impression is proscribed — its operations aren’t affected and neither are prospects.
The corporate identified a number of exaggerations and inaccuracies within the hacker’s publish. D-Hyperlink claims that solely 700 information had been really compromised, not 3 million, and famous that the hacker might have altered the login timestamps to make the information look newer than it really is.