Clubhouse has denied the report of any data breach containing 1.3 million scraped records of its users. The company took to Twitter to clear its stance.
- Personal data for some 1.3 million users of Clubhouse app reportedly leaked online.
- Clubhouse has denied the report of any data breach.
The personal data for some 1.3 million users of the social audio app Clubhouse has reportedly leaked online. According to Cyber News, the scraped data posted on the hacker forum can be used by cybercriminals to carry out targeted phishing or other types of social engineering attacks, and that such database can also be used by threat actors to brute-force the passwords of Clubhouse profiles.
However, Clubhouse has denied the report of any data breach containing 1.3 million scraped records of its users. The company took to Twitter to clear its stance where it said, “This is misleading and false. Clubhouse has not been breached or hacked. The data referred to is all public profile information from our app, which anyone can access via the app or our API.”
It is reported that the leaked database from Clubhouse contains User ID, name, photo URL, username, Twitter handle, Instagram handle, number of followers, number of people followed by the user and more.
“Particularly determined attackers can combine information found in the leaked SQL database with other data breaches in order to create detailed profiles of their potential victims. With such information in hand, they can stage much more convincing phishing and social engineering attacks or even commit identity theft against the people whose information has been exposed on the hacker forum,” report said.
For those who are unaware, Clubhouse is an invitation-only social media app for iOS that facilitates auditory communication through rooms that can accommodate groups of up to 5,000 people. The audio-only app hosts virtual rooms for live discussions, with opportunities for individuals to participate through speaking and listening.
Recently, personal data of over 500 million LinkedIn users was scraped and put up for sale on hacking forums. LinkedIn confirmed that the leaked data was not a breach but “actually an aggregation of data from a number of websites and companies.
Earlier this month, personal data of nearly 533 million Facebook users, including 61 lakh Indians, remerged online after a hacker posted the details on a digital forum.