Mtw.ru

History

2023: Cyber attack, 213,000 customer companies stolen

In August 2023, it became known about a major leak of data from users of users of the hosting company mtw.ru. The hacker group DumpForums claimed responsibility for the cyber attack.

According to SecurityLab, a database was stolen from mtw.ru, including:

• Full customer names
• email addresses (more than 12 thousand unique addresses);
• phone numbers (more than 12 thousand unique numbers);
• password hashes;
• logins (more than 100 thousand unique logins);
• passport data, including addresses of registration of individuals;
• IP addresses, domains, and other related information.

It became known about a major leak of data from users of users of the hosting company mtw.ru

This is not the first time that the DumpForums group has been active against Russian hosting companies. In the previous cyber attack, they affected the Reg.ru hosting platform, but then the information leak was insignificant, the publication notes.

In August 2023, hackers said they had been and continue to be in the company's internal infrastructure for more than a year. The purpose of their attack is the data of the client companies of the hosting platform, which, according to the attackers, have already accumulated more than 213 thousand. The published dump contains only information related to the mtw.ru. itself

Roskomnadzor announced its intention to conduct an audit on information about a possible leak of personal data of users of the hosting platform mtw.ru. As of 13:00 on August 21, 2023, Roskomnadzor did not receive a notification of the incident from the company, the department said.

According to Positive Technologies, by 2023, most large Russian companies have vulnerabilities in their IT systems that allow hackers to gain access to confidential corporate information.^[1]

Notes