DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Basic Analyst into #ProjectBlackStar Leaked Russian Data

Posted on November 4, 2012 by Lee J

russiaThe last few days has been epic to say the least, lack of sleep, hours of processing and normal 8hrs a day shift work as well. Anyway moving to what we are all looking for which is a full detailed analyst into the recent leak of information from 62 different sites which has been dubbed #Projectblackstar and was carried out by hackers from @TeamGhostShell. As most know the leaked data was posted in the form of a index on various public pastebin sites which had well over 200 links to partial leaked data that came from 62 websites that are mainly from Russian but also from turkey, Italy, Ukraine. Almost all of the attacked websites have resulted in leaked account data that contains emails and passwords which total 148,449 found emails. Aw well as the leaked emails some of the data leaked contains visitation logs from websites such as metaprom.ru and others. It also does contain a heap of accounts with just usernames and passwords as well as other personal or account related information.

Break down of leak data

As stated above the leaked data does not all contain critical information, in fact a lot of it is just database layouts and basic user credentials but the size of this when put together is huge. The largest breaches from Projectblackstar come from https://www.corp-gov.ru coming in with 64,885 found emails, next up is https://rabota-izhevsk.info with 60,000. The 2nd lot of largest sites are in the 10-20k leaked accounts and those are https://ec-univer.ru with 14,683 accounts found, https://medical.ru 13,750 accounts found and finally  https://www.psi-energo.ru with 12,836 accounts found. Most of the other sites that had breaches only range from 1-10,000 accounts but more so down to the 5000 mark. encryption appears to be used across pretty much all the databases. Out of the 62 sites leaked 24 contain very minor data, no emails or relevant account credentials. Also i noticed some sites stating that 2.5 million russian government accounts had been leaked in this breach. I am yet to find that but there is a lot of government based service sites and education based sites that have been affected in this breach.


Related:

  • Two more entities have folded after ransomware attacks
  • Microsoft Releases Urgent Patch for SharePoint RCE Flaw Exploited in Ongoing Cyber Attacks
  • Premier Health Partners issues a press release about a breach two years ago. Why was this needed now?
  • Missouri Adopts New Data Breach Notice Law
  • Qantas obtains injunction to prevent hacked data’s release
  • Global operation targets NoName057(16) pro-Russian cybercrime network in Operation Eastwood
Category: Breach Incidents

Post navigation

← Tabasco Hoy Website hacked, 7000+ user credentials leaked
Anonymous Leak VMware ESX Server Kernel →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
  • Hacker group “Silent Crow” claims responsibility for cyberattack on Russia’s Aeroflot
  • AIIMS ORBO Portal Vulnerability Exposing Sensitive Organ Donor Data Discovered by Researcher
  • Two Data Breaches in Three Years: McKenzie Health
  • Scattered Spider is running a VMware ESXi hacking spree
  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack (1)
  • Infinite Services notifying employees and patients of limited ransomware attack
  • The safe place for women to talk wasn’t so safe: hackers leak 13,000 user photos and IDs from the Tea app

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Congress tries to outlaw AI that jacks up prices based on what it knows about you
  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders
  • Indonesia asked to reassess data privacy terms in new U.S. trade deal
  • Meta Denies Tracking Menstrual Data in Flo Health Privacy Trial
  • Wikipedia seeks to shield contributors from UK law targeting online anonymity
  • British government reportedlu set to back down on secret iCloud backdoor after US pressure

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.