About Lead411 — According to their website:
Lead411 is a B2B Lead Intelligence software platform that provides corporate and contact context to sales and marketing teams in order to increase their lead identification and conversion rates. Lead411’s verified prospect development technology turbo-charges marketing programs with high-quality target prospects that are more accurate and reliable than those acquired by traditional methods. With Lead411, customers get accurate contact information and a well- rounded view of their prospect’s business so they can identify the best opportunity to pitch and close deals.
Cyble research team was initially tipped-off by a credible actor on one of the hacking forums with the screenshots as below:
This immediately got our attention, as we could see foresee some of our customers’ information might be at risk.
How so how did the breach occur? Unprotected directory and files.
Has the issue been fixed — Partially (verified)
Breach date — April 14, 2020.
Data timeline — 2017 to 2020
Impact: Cybercriminals can utilise this information to perform targeted cyber attacks on corporates (via employees information).
And the seller was correct, with over 1 million records, it has interesting information of such as Name, Email, Phone Number, Mobile Number, Skills and Address (Corporate) and others (skills etc).
Here are the fields —
Company Name, Company Id, Ticker, Company URL, First Name, Last Name, Title, Email Address1, Address2, City, State, Zip, Main Phone, Direct Phone, Ext, Fax, Department, Employee Id, Revenue, Employees Industry, SICCodes, Technologies Inside Products
Cyble research team confirmed that it contains employees corporate records.
After analysing 834 MB (1/3 rd) of files, we found the employees records of the following companies (and the number of records), including but not limited to—
Cyble has indexed these records in their darkweb monitoring engine. Retail users can utilise Cyble’s data breach monitoring platform AmIBreached.com
Interested learn more: reach out to us at email@example.com
Cyble Inc.’s mission is to provide organizations with a real-time view of their supply chain cyber threats and risks. Their SaaS-based solution powered by machine learning and human analysis provides organizations’ insights to cyber threats introduced by suppliers and enables them to respond to them faster and more efficiently.
Cyble strives to be a reliable partner/facilitator to its clients allowing them with unprecedented security scoring of suppliers through cyber intelligence sourced from open and closed channels such as OSINT, the dark web and deep web monitoring and passive scanning of internet presence. Furthermore, the intelligence clubbed with machine learning capabilities fused with human analysis also allows clients to gain real-time cyber threat intel and help build better and stronger resilience to cyber breaches and hacks. Due to the nature of the collected data, the company also offer threat intelligence capabilities out-of-box to their subscribers.