Alleged Chinese police database hack leaks data of 1 billion

Jul 5, 2022, 4:51 AM | Updated: Jul 7, 2022, 3:38 pm
A police officer watch over a road junction with traffic lights, Tuesday, May 31, 2022, in Shanghai...

A police officer watch over a road junction with traffic lights, Tuesday, May 31, 2022, in Shanghai. Hackers claim to have obtained a trove of data on 1 billion Chinese from a Shanghai police database in a leak that, if confirmed, could be one of the largest data breaches in history. (AP Photo/Ng Han Guan)

(AP Photo/Ng Han Guan)

HONG KONG (AP) — Hackers claim to have obtained a trove of data on 1 billion Chinese from a Shanghai police database in a leak that, if confirmed, could be one of the largest data breaches in history.

In a post on the online hacking forum Breach Forums last week, someone using the handle “ChinaDan” offered to sell nearly 24 terabytes (24 TB) of data including what they claimed was information on 1 billion people and “several billion case records” for 10 Bitcoin, worth about $200,000.

The data purportedly includes information from the Shanghai National Police database including names, addresses, national identification numbers and mobile phone numbers as well as case details.

A sample of data seen by The Associated Press listed names, birthdates, ages and mobile numbers. One person was listed as having been born in “2020,” with their age listed as “1,” suggesting that information on minors was included in the data obtained in the breach.

The Associated Press could not immediately verify the authenticity of the data samples. Shanghai police did not immediately respond to a request for comment.

The data leak initially sparked discussion on Chinese social media platforms such as Weibo, but censors have since moved to block keyword searches for “Shanghai data leak.”

One person said they were skeptical until they managed to verify some of the personal data leaked online by attempting to search for people on Alipay using their personal information.

“Everyone, please be careful in case there are more phone scams in the future!” they said in a Weibo post.

Another person commented on Weibo that the leak means everyone is “running naked” — slang used to refer to a lack of privacy — and it’s “horrifying.”

Experts said the breach, if confirmed, would be the biggest in history.

Kendra Schaefer, a partner for technology at policy research firm Trivium China, said in a tweet that it’s “hard to parse truth from the rumor mill, but can confirm file exists.”

Such data leaks are fairly common, according to Michael Gazeley, managing director at Hong Kong-based security firm Network Box.

“There are approximately 12 billion compromised accounts posted on the Dark Web right now. That’s more than the total number of people in the world,” he said, adding that a majority of data leaks often come from the U.S.

Chester Wisniewski, principal research scientist at cybersecurity firm Sophos, said that the breach is “potentially incredibly embarrassing to the Chinese government,” and the political harm would probably outweigh damage to the people whose data was leaked.

Most of the data is similar to what advertising companies that run banner ads would have, he said.

“When you’re talking about a billion people’s information and it’s static information, it’s not about where they traveled, who they communicated with or what they were doing, then it becomes very much less interesting,” Wisniewski said.

Still, once hackers get data and put it online it’s impossible to fully remove.

“The information, once it’s unleashed, is forever out there,” Wisniewski said. “So if someone believes their information was part of this attack, they have to assume it’s forever available to anyone and they should be taking precautions to protect themselves.”

A major cryptocurrency exchange said it had stepped up verification procedures to guard against fraud attempts such as using personal information from the reported hack to take over people’s accounts.

Zhao Changpeng, CEO of Binance, a cryptocurrency exchange, said in a tweet Monday that its threat intelligence had detected the sale of “1 billion resident records.”

“This has impact on hacker detection/prevention measures, mobile numbers used for account take overs, etc.” Zhao wrote in his tweets, before saying that Binance had already stepped up verification measures.

In 2020, a major cyberattack believed to be by Russian hackers compromised several U.S. federal agencies such as the State Department, the Department of Homeland Security, telecommunications firms and defense contractors.

Last year, over 533 million Facebook users had their data published in a hacking forum after hackers scraped its data due to a vulnerability that has since been patched.

—-

AP journalist Emily Wang in Beijing and researcher Chen Si in Shanghai contributed to this report.

Copyright © The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

AP

FILE - Former NFL quarterback Brett Favre speaks to the media in Jackson, Miss., Oct. 17, 2018. The...
Associated Press

Texts: Favre also sought welfare money for football facility

JACKSON, Miss. (AP) — After Mississippi spent millions of dollars in welfare money on Brett Favre’s pet project, a university volleyball arena, the retired NFL quarterback tried two years later to get additional cash from the state’s welfare agency for another sports facility, new court documents show. The governor at the time, Republican Phil Bryant, […]
17 hours ago
Associated Press

Police: Man arrested in California plotted mass shooting

CHICO, Calif. (AP) — A 37-year-old man was arrested Sunday in Northern California on suspicion of threatening to kill police officers and planning a “Las Vegas-style” mass shooting, authorities said. The suspect was taken into custody by SWAT officers at a Super 8 motel in Chico after detectives obtained evidence of his plot, according to […]
17 hours ago
FILE - Rihanna attends an event for her lingerie line Savage X Fenty at the Westin Bonaventure Hote...
Associated Press

Rihanna to headline the next Super Bowl halftime show

NEW YORK (AP) — Rihanna will take center stage at February’s Super Bowl halftime show. The singer, who declined to perform in the 2019 Super Bowl halftime show out of solidarity with Colin Kaepernick, will headline the 2023 Super Bowl, the NFL announced Sunday along with Jay-Z’s Roc Nation and Apple Music. Rihanna posted an […]
17 hours ago
A sedan is wedged between a small, black pickup truck and the Bagel Time Cafe in Wildwood, N.J., ea...
Associated Press

Official: 2 killed amid crashes during pop-up NJ car rally

WILDWOOD, N.J. (AP) — A pop-up car rally over the weekend in southern New Jersey led to multiple crashes and the deaths of at least two people riding in a golf cart, officials say. Wildwood Mayor Pete Byron told NJ Advance Media on Sunday that there were a series of car crashes related to the […]
17 hours ago
Associated Press

Little evidence of political argument before teen’s death

BISMARCK, N.D. (AP) — There is little indication that an 18-year-old who died after being struck by an SUV in North Dakota was a political extremist like the driver claimed. Investigators say none of the witnesses they have interviewed support the idea that there was a political argument before authorities say Shannon Brandt struck Cayler […]
17 hours ago
Associated Press

Prosecutor might seek sharecropper’s posthumous exoneration

ATLANTA (AP) — A Georgia district attorney said he may revisit a decades-old case in which the state Supreme Court overturned three murder convictions of a Black sharecropper in the killing of a white man to determine whether the sharecropper deserves to be formally exonerated posthumously. Weaknesses in the case were detailed in a book […]
17 hours ago

Sponsored Articles

...
Children’s Cancer Network

Children’s Cancer Network celebrates cancer-fighting superheroes, raises funds during September’s Childhood Cancer Awareness Month

Jace Hyduchak was like most other kids in his kindergarten class: He loved to play basketball, dress up like his favorite superheroes and jump as high as his pint-sized body would take him on his backyard trampoline.
...
SCHWARTZ LASER EYE CENTER

Key dates for Arizona sports fans to look forward to this fall

Fall brings new beginnings in different ways for Arizona’s professional sports teams like the Cardinals and Coyotes.
...
Day & Night Air Conditioning, Heating and Plumbing

Ways to prevent clogged drains and what to do if you’re too late

While there are a variety of ways to prevent clogged drains, it's equally as important to know what to do when you're already too late.
Alleged Chinese police database hack leaks data of 1 billion