The data of more than 250 million users of the Deezer music streaming platform is currently for sale on the Internet. The hacker would have obtained this information during an intrusion into the company’s servers dating from 2019.
Surprisingly enough, it will take nearly three years to the pirate to resell his precious booty. 2023 promises to be just as perilous a year as 2022 when it comes to private data security. And unfortunately for everyone, data leaks are going to be very expensive in 2023.
Read — Deezer offers blind tests accessible directly from the mobile app and on the web
As is often the case, the data leak was made possible due to default by a Deezer business partner. While the streaming platform’s security measures were fully functional, it was through a “man-in-the-middle attack” that the hacker managed to obtain this huge amount of data. Deezer specifies the nature of the data shared by the cybercriminal: “ some of our users’ non-sensitive information has been exposed. While we are not aware of any misuse of this data, we want to provide clarity and provide potentially affected users with guidance on how to protect themselves.”
Hacker resells Deezer user data acquired through platform partner
Deezer offers the largest music catalog in the world, so it’s no wonder that 257 million people have an account. Not all of them shared sensitive data with the French service. Indeed, the majority of information made available on the web is very benign. According to Deezer, no password or information on payment methods leaked. That said, the company’s blog post dedicated to this leak strongly encourages its users to consult the website of the Ministry of Economy, Finance and Industrial and Digital Sovereignty at https://www.economie .gouv.fr/particuliers/protection-usurpation-identite.
The lost data weighs no less than 260 GB. But more than the size of the lost files, it is the value of a user account that should be remembered. A single person’s data can sell for $175 to $1,000depending on their nature.