India Crypto Exchange Buyucoin becomes the Latest Shinyhunters victims, Over 325k Users Sensitive Data Leaked

By: Martins Wilson

January 24, 2021 3:00 PM

Indian crypto exchange "Buyucoin" was hacked as Hackers exposed over 325k users sensitive data to the dark web market.

According to the report, the leaked data which includes details such as personal information, encrypted passwords, user wallet details, order details, bank details, PAN numbers, passport numbers, and deposit histories.

It is stated the exchange has more than 350,000 registered users and has processed over $500 million in cryptocurrency trades, according to its website. With Several local news outlets reporting that sensitive data of about 325K customers has been dumped onto the dark web. IANS publication detailed on Friday:

The data leaked include names, e-mails, mobile numbers, encrypted passwords, user wallet details, order details, bank details, KYC details (PAN number, passport numbers) and deposit history.

ShinnyHunters at it Again

The Indian based exchange Buyucoin is now the latest victim from hacker group Shinnyhunters, which have been known for leaking databases for free,
The group also leaked data of e-grocer Big Basket, educational technology platform (Unacademy) and payment aggregator Juspay.

At time of reporting they have been no update on the hack by Buyucoin also:

KELA an Israel-based darknet threat intelligence provider also confirmed the leak to the publication.  Victoria Kivilevich who is the firm’s threat intelligence analyst explained that “These records are now circulating on the dark web and available for use by other cyber criminals.” She added that they can use the data for anything from “phishing scams to gaining admin privileges and access into corporate networks if corporate credentials have been leaked.”

Buyucoin wrote on its website:

We are thoroughly investigating each and every aspect of the report about malicious and unlawful cybercrime activities by foreign entities in mid-2020.