Data from almost 57,000 users ended up online.
According to open sources, the Kaspersky Lab fan club forum was hacked, as a result of which the RGB hacker group made public the personal data of 56,798 users.
The forum is a popular platform for discussing Kaspersky Lab products, sharing training materials, and helping with troubleshooting. Despite the unofficial status of the forum, the data leak turned out to contain information not only from ordinary users, but also from the company's employees, confirmed by the presence of email addresses with the domain @kaspersky.com almost 200 participants.
The leak occurred on March 24, 2024, but GOOGLE announced the hack only on April 4 on its website, and then spread the information on the Breach Forums and Telegram forum. The leak affected both Russian-language and English-language forums.
The data in the leak is current as of 20.03.2024 and contains:
Screenshot of the leak
The forum administration confirmed the fact of hacking and published a statement in which it mentioned the beginning of the mass password reset procedure. One of the administrators, under the pseudonym MiStr, said that the hack was aimed at the forum's hosting provider.
Forum administrator reported hacking
Kaspersky Lab conducted its own investigation and confirmed that the company's servers, systems and domains were not affected – the incident affected only the fan club forum.
Kaspersky Lab has verified information published on Internet resources about the data leak and reports that the company's infrastructure was not compromised.
The attack was carried out exclusively by the hosting provider that hosted the company's fan club forum site.kasperskyclub.ru, it was located outside the company's infrastructure.
The data of users of the company's products was not affected, as it is stored and securely protected directly in the Kaspersky Lab infrastructure, a Kaspersky Lab representative commented on the situation.
According to open sources, the Kaspersky Lab fan club forum was hacked, as a result of which the RGB hacker group made public the personal data of 56,798 users.
The forum is a popular platform for discussing Kaspersky Lab products, sharing training materials, and helping with troubleshooting. Despite the unofficial status of the forum, the data leak turned out to contain information not only from ordinary users, but also from the company's employees, confirmed by the presence of email addresses with the domain @kaspersky.com almost 200 participants.
The leak occurred on March 24, 2024, but GOOGLE announced the hack only on April 4 on its website, and then spread the information on the Breach Forums and Telegram forum. The leak affected both Russian-language and English-language forums.
The data in the leak is current as of 20.03.2024 and contains:
- full names;
- IP addresses;
- email addresses (56,768 unique addresses);
- password hashes.
Screenshot of the leak
The forum administration confirmed the fact of hacking and published a statement in which it mentioned the beginning of the mass password reset procedure. One of the administrators, under the pseudonym MiStr, said that the hack was aimed at the forum's hosting provider.
Forum administrator reported hacking
Kaspersky Lab conducted its own investigation and confirmed that the company's servers, systems and domains were not affected – the incident affected only the fan club forum.
Kaspersky Lab has verified information published on Internet resources about the data leak and reports that the company's infrastructure was not compromised.
The attack was carried out exclusively by the hosting provider that hosted the company's fan club forum site.kasperskyclub.ru, it was located outside the company's infrastructure.
The data of users of the company's products was not affected, as it is stored and securely protected directly in the Kaspersky Lab infrastructure, a Kaspersky Lab representative commented on the situation.
