Flash Alert: Tokopedia Breach

IntSights researchers have secured the full database from the Tokopedia breach

On May 2nd it was reported that Tokopedia, an Indonesian e-commerce site, had been breached. The reports came after a threat actor offered the database from the breach for sale on a Dark Web market.

The seller claimed the database contains over 91M credentials. To assist him with breaking the password hash the seller released a sample of 15M credentials. IntSights researchers obtained the sample and confirmed that these credentials are unique and are not recycled from previous data breaches. Following the confirmation that the data was unique as claimed, IntSights researchers successfully secured the full database – a 29Gb file with over 91M entries.

IntSights is currently in the process of analyzing and parsing the data. Organizations that have been affected by this breach will be notified.

Affected users are advised to change their password for Tokopedia as well as any other service, site, or application where the same password was used in order to prevent credential stuffing attacks.

Reports of the breach:
https://www.zdnet.com/article/hacker-leaks-15-million-records-from-tokopedia-indonesias-largest-online-store/

https://www.reuters.com/article/us-tokopedia-cyber/indonesias-tokopedia-probes-alleged-data-leak-of-15-million-users-idUSKBN22E0Q2

To see the IntSights External Threat Protection suite of solutions in action, schedule a live demo with a member of our team today.

Request a Demo

Stay up to Date!

Subscribe to the blog to stay up to date with all the latest industry news and updates from IntSights.