GnosticPlayers
Computer hacking group
GnosticPlayers is a computer hacking group, which is believed to have been formed in 2019 and gained notability for hacking Zynga,[1][2] Canva,[3][4] and several other online services.[5][6]
The Independent reported that GnosticPlayers had claimed responsibility for hacking other online businesses, and stealing hundreds of millions of credentials from web databases such as MyFitnessPal, Dubsmash, and fourteen others; and subsequently selling these credentials on the dark web.[7][8]
Reported members
In 2020, cybersecurity author Vinny Troia published a report listing the following core group members:[9]
- Maxime Tallet, who went under the aliases DDB, Casper, RawData and Pumpkin, was the seller of the group.
- Nassim Benhaddou, who went under the alias Prosox, was a member of the group and was known to be Gabriel's early associate. According to Troia, Benhaddou later went on to form the group ShinyHunters.[10]
In 2019, Nassim Benhaddou, Gabriel Kimiaie-Asadi Bildstein, as well as Maxime Tallet, were arrested after Gabriel confessed that they hacked Gatehub.[11] The hack reportedly involved the theft of $9.5 million worth of cryptocurrency.[12]
Companies affected
GnosticPlayers have taken public responsibility for the following data breaches:[13]
500px • 8fit • 8tracks • Animoto • Armor Games • Artsy • Avito • BlankMediaGames • Bookmate • Bukalapak • Canva • Chegg • CoffeeMeetsBagel • Coinmama • Coubic • DailyBooth • DataCamp • DubSmash • Edmodo • Epic Games • Evite • EyeEm • Fotolog • GameSalad • Gatehub • Ge.tt • GfyCat • HauteLook • Houzz • iCracked • Ixigo • Legendas.tv • LifeBear • Live Journal • LovePlanet • mefeedia • MindJolt • MyFitnessPal • MyHeritage • MyVestigage • Netlog & Twoo • OMGPop • Onebip • Overblog • Petflow • PiZap • PromoFarma • RoadTrippers • Roll20 • ShareThis • Shein • Singlesnet • Solstice • Storenvy • StoryBird • StreetEasy • Stronghold Kingdoms • Taringa • Wanelo • WhitePages • Wirecard • Yanolja • Yatra • YouNow • Youthmanual • Zomato • Zynga
A report published by security research firm Night Lion Security states that the core members of GnosticPlayers (who are also connected with groups The Dark Overlord and Shiny Hunters) have been involved in 25% of non-credit card related data breaches between January 1, 2017 and June 30, 2020.[14]
See also
- ShinyHunters
- The Dark Overlord
References
- ^ "Zynga data breach exposed 200 million Words with Friends players". www.cbsnews.com. 2 October 2019.
- ^ Hern, Alex (December 19, 2019). "170m passwords stolen in Zynga hack, monitor says". The Guardian – via www.theguardian.com.
- ^ says, Anon (May 28, 2019). "Millions of Canva users' data stolen as GnosticPlayers strikes again".
- ^ "Canva data breach: Why hacker Gnosticplayers boasted to the media". June 3, 2019.
- ^ Cimpanu, Catalin. "A hacker has dumped nearly one billion user records over the past two months". ZDNet.
- ^ "Times when 'Gnosticplayers' hacker made headlines for selling troves of stolen data on dark web | Cyware Hacker News". cyware.com.
- ^ "Dark web data dump sees 620 million accounts from hacked websites go on sale". Independent.co.uk. 13 February 2019.
- ^ "617 million hacked accounts put on sale on the dark web | Digit". www.digit.in. 13 February 2019.
- ^ https://www.nightlion.com/wp-content/uploads/2020/12/The-Dark-Overlord-Investigation-Report-Night-Lion_v1.01.pdf.
{{cite web}}: Missing or empty|title=(help) - ^ "GnosticPlayers Part 1: An Overview of Hackers Nclay, DDB, and NSFW". Night Lion Security. 2019-12-30. Retrieved 2021-01-25.
- ^ https://www.nightlion.com/wp-content/uploads/2020/12/The-Dark-Overlord-Investigation-Report-Night-Lion_v1.01.pdf.
{{cite web}}: Missing or empty|title=(help) - ^ Cimpanu, Catalin. "Hackers steal $9.5 million from GateHub cryptocurrency wallets". ZDNet. Retrieved 2021-01-25.
- ^ https://www.nightlion.com/wp-content/uploads/2020/12/The-Dark-Overlord-Investigation-Report-Night-Lion_v1.01.pdf.
{{cite web}}: Missing or empty|title=(help) - ^ https://www.nightlion.com/wp-content/uploads/2020/12/The-Dark-Overlord-Investigation-Report-Night-Lion_v1.01.pdf.
{{cite web}}: Missing or empty|title=(help)
- v
- t
- e
Hacking in the 2010s
| ← 2000s | Timeline | 2020s → |
| 2010 |
|
|---|---|
| 2011 |
|
| 2012 | |
| 2013 | |
| 2014 | |
| 2015 | |
| 2016 |
|
| 2017 | |
| 2018 | |
| 2019 |
persistent threats
- Bangladesh Black Hat Hackers
- Bureau 121
- Charming Kitten
- Cozy Bear
- Dark Basin
- DarkMatter
- Elfin Team
- Equation Group
- Fancy Bear
- GOSSIPGIRL (confederation)
- Guccifer 2.0
- Hacking Team
- Helix Kitten
- Iranian Cyber Army
- Lazarus Group (BlueNorOff) (AndAriel)
- NSO Group
- Numbered Panda
- PLA Unit 61398
- PLA Unit 61486
- PLATINUM
- Pranknet
- Red Apollo
- Rocket Kitten
- Stealth Falcon
- Syrian Electronic Army
- Tailored Access Operations
- The Shadow Brokers
- Yemen Cyber Army
- George Hotz
- Guccifer
- Jeremy Hammond
- Junaid Hussain
- Kristoffer von Hassel
- Mustafa Al-Bassam
- MLT
- Ryan Ackroyd
- Sabu
- Topiary
- Track2
- The Jester
publicly disclosed
- Evercookie (2010)
- iSeeYou (2013)
- Heartbleed (2014)
- Shellshock (2014)
- POODLE (2014)
- Rootpipe (2014)
- Row hammer (2014)
- SS7 vulnerabilities (2014)
- JASBUG (2015)
- Stagefright (2015)
- DROWN (2016)
- Badlock (2016)
- Dirty COW (2016)
- Cloudbleed (2017)
- Broadcom Wi-Fi (2017)
- EternalBlue (2017)
- DoublePulsar (2017)
- Silent Bob is Silent (2017)
- KRACK (2017)
- ROCA vulnerability (2017)
- BlueBorne (2017)
- Meltdown (2018)
- Spectre (2018)
- EFAIL (2018)
- Exactis (2018)
- Speculative Store Bypass (2018)
- Lazy FP state restore (2018)
- TLBleed (2018)
- SigSpoof (2018)
- Foreshadow (2018)
- Dragonblood (2019)
- Microarchitectural Data Sampling (2019)
- BlueKeep (2019)
- Kr00k (2019)
| 2010 |
|
|---|---|
| 2011 | |
| 2012 | |
| 2013 | |
| 2014 | |
| 2015 | |
| 2016 | |
| 2017 | |
| 2018 | |
| 2019 |
|
 | This computer security article is a stub. You can help Wikipedia by expanding it. |
- v
- t
- e
