What Happened
In August 2024, over 332 million email addresses were posted to Breach Forums, a cybercrime forum, with the post alleging the data was scraped from cybersecurity firm SOCRadar. However, SOCRadar’s investigation concluded there was “no data breach involving our customers or SOCRadar’s internal systems” and that the data was actually scraped from publicly available sources, including Telegram channels, using functionalities inherent in the platform’s standard offerings. The dataset, totaling approximately 14GB in CSV format, contained only email addresses without passwords or other personal information. Despite SOCRadar not being compromised, cybersecurity experts warned of potential risks from the exposed addresses, including phishing attacks, spam campaigns, and brute-force login attempts, particularly if combined with credentials from other data breaches.
