Temu Denies Hacker’s Claim of 87 Million User Data Breach
Temu Denies Data Breach Allegations After Hacker Claims to Sell 87 Million User Records
Temu, a fast-growing e-commerce platform, has denied claims of a data breach after a hacker alleged they were selling a database containing 87 million customer records. The hacker posted samples of the data on BreachForums, claiming it contained sensitive information such as usernames, IP addresses, shipping addresses, phone numbers, and hashed passwords.
Threat actor’s post on BreachForums
Source: BleepingComputer
Temu Denies Breach Allegations
Temu responded swiftly to the allegations, stating that their internal investigation found no matches between the posted data and their systems. In a statement to BleepingComputer, Temu said, “We have thoroughly reviewed the samples and confirm that no part of the data matches our transaction records. We are taking these false claims seriously and are prepared to pursue legal action against those spreading misinformation.”
See Also: So, you want to be a hacker?
Offensive Security, Bug Bounty Courses
Discover your weakest link. Be proactive, not reactive. Cybercriminals need just one flaw to strike.
Temu emphasized that it adheres to strict cybersecurity standards and uses robust data protection practices, including MASA certification and compliance with PCI DSS, to safeguard user information.
Hacker Claims to Have Breached Temu
The threat actor, using the alias ‘smokinthashit,’ claims they gained unauthorized access to Temu’s systems and are selling the stolen database. The hacker’s post includes a small sample of what they claim to be Temu’s user data, featuring full names, dates of birth, shipping addresses, and hashed passwords. The hacker also alleges they still have access to internal Temu systems, including company emails and administrative panels, and that vulnerabilities in Temu’s code allowed them to breach the platform.
BleepingComputer reached out to the hacker for further evidence of their claims but did not receive additional proof. As of now, there is no independent confirmation of the breach.
Potential Reputation Damage
While Temu maintains that the claims are false, even unproven breach allegations can damage a company’s reputation and create uncertainty among its users. Such claims could increase customer anxiety, prompting concerns over data security and privacy.
Trending: Understanding PTaaS and SOC
Trending: Offensive Security Tool: headi
What Temu Users Should Do
Out of caution, users are advised to take preventative steps. It’s recommended that Temu users enable two-factor authentication (2FA) on their accounts, change their passwords to unique and strong alternatives, and remain vigilant for phishing emails or any other suspicious activity.
Though Temu has denied any compromise, staying proactive in personal cybersecurity is always a good practice.
Temu has yet to comment further on claims that the hacker still has access to its systems.
Are u a security researcher? Or a company that writes articles about Cyber Security, Offensive Security (related to information security in general) that match with our specific audience and is worth sharing? If you want to express your idea in an article contact us here for a quote: [email protected]
Source: bleepingcomputer.com
Recent News
Offensive Security & Ethical Hacking Course
Begin the learning curve of hacking now!
Information Security Solutions
Find out how Pentesting Services can help you.
