Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Incidents

Data Breach Exposes 122 Million Contacts

November 14, 2024
Reading Time: 2 mins read
in Incidents
Data Breach Exposes 122 Million Contacts

In February 2024, a significant data breach occurred involving 122 million individuals’ business contact information, which was stolen from DemandScience, a B2B demand generation platform. DemandScience, formerly known as Pure Incubation, collects and aggregates business data from public sources and third-party providers, including email addresses, phone numbers, job titles, and social media profiles. The breach was attributed to a threat actor named ‘KryptonZambie,’ who first advertised the stolen data on BreachForums, but DemandScience initially denied any breach, asserting that their systems were secure behind firewalls and other protections.

Despite the company’s claims, the hacker later made the stolen data freely available for just a few dollars worth of credits in August 2024. This raised concerns about the security of the data aggregation processes, as the stolen information had been circulated widely. Although the breach went unacknowledged at first, an investigation confirmed that the data did indeed come from a decommissioned system that had been inactive for two years. DemandScience reiterated that its current operational systems were not compromised, though it did not deny the authenticity of the leak.

Troy Hunt, a cybersecurity expert, validated the data’s authenticity in his blog post, revealing that several affected individuals, including himself, found their personal information in the breach. The 122 million unique email addresses from the stolen dataset were added to the Have I Been Pwned platform, where affected users were notified about the breach. The data included sensitive contact details of people who had previously worked at various companies, further underscoring the risk posed by inadequate data protection practices in large organizations.

The breach highlights the inherent risks of data aggregation, where vast amounts of personal information are collected from various public and private sources. DemandScience’s failure to detect the breach and its slow response have raised questions about the security measures in place for handling such large datasets. As a result, organizations handling business information are urged to implement robust security measures, regularly audit their systems, and remain vigilant to protect sensitive data from being exposed or misused.

Reference:
  • Data on 122 Million People Leaked From DemandScience Platform
Tags: cyber incidentsCyber Incidents 2024Cyber threatsData BreachData LeakDemandScienceKryptonZambieNovember 2024Pure Incubation
ADVERTISEMENT

Related Posts

Infostealer Hidden in Steam Game

Hackers Target Amazon’s AI Code Bot

July 25, 2025
Infostealer Hidden in Steam Game

APTs Use Fake Dalai Lama Apps to Spy

July 25, 2025
Infostealer Hidden in Steam Game

Infostealer Hidden in Steam Game

July 25, 2025
Interlock Ransomware Threat Alert

Hackers Use Ransomware on SharePoint Servers

July 24, 2025
Interlock Ransomware Threat Alert

Data Breach Affects 340K Jobseekers

July 24, 2025
Interlock Ransomware Threat Alert

Beluga Vodka Ransomware Attack Reported

July 24, 2025

Latest Alerts

CastleLoader Uses Clickfix on Windows

Sophos, SonicWall Patch Critical RCE Bugs

Koske Malware Hides in Panda Images

Interlock Ransomware Threat Alert

GitLab Patches Key Vulnerabilities

Backdoor Found in WP Plugins

Subscribe to our newsletter

    Latest Incidents

    Hackers Target Amazon’s AI Code Bot

    APTs Use Fake Dalai Lama Apps to Spy

    Infostealer Hidden in Steam Game

    Data Breach Affects 340K Jobseekers

    Hackers Use Ransomware on SharePoint Servers

    Beluga Vodka Ransomware Attack Reported

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial