Hackers published data (provided access to it for a nominal fee) containing 77 million records of Nitro PDF users.
Last fall, the developer of the well-known PDF tool, Nitro, leaked their customers’ data. Then the company representatives assured that the incident did not have a serious impact on the work of Nitro PDF, and user data was not affected.However, at the same time information security experts reported that hackers were selling user databases and databases with documents stolen from the company at a private auction, as well as more than 1 TB of various documents.
Let me remind you that Nitro solutions for creating, editing and signing PDF files and digital documents are used by more than 10,000 business customers and 1,800,000 users around the world.
In addition, Nitro provides its users with a cloud service to exchange documents with colleagues or other organizations. Thus, due to last year’s incident, not only ordinary users suffered but also such giants as Google, Apple, Microsoft, Chase, and Citibank.
As Bleeping Computer now reports, the well-known leak aggregator Have I Been Pwned updated its database with Nitro PDF customer data this week. The 14 GB database that “leaked” to the network contains 77,159,696 entries with user email addresses, their full names, bcrypt hashed passwords, company names, IP addresses and other system information.
The base was spread online by someone claiming to be a member of the Shiny Hunters hack group.
The attacker published the database on a hacker forum, charging a symbolic $3 fee to access the download link.
Recommendations:
While attackers can use leaked user data to launch more robust phishing attacks or can use credentials for filing forms on the websites, affected Nitro PDF users are strongly advised to change their passwords to a strong and unique one.
