cyber Breach

Alibaba Group

May 11, 2023 1 min read
Alibaba Group

Chinese police arrested 21 suspects in connection with the theft of customer information from Alibaba Group Holding’s logistics affiliate Cainiao Network.

More than 10 million pieces of client data including user names, phone numbers and parcel tracking numbers were stolen from Cainiao.

Barcode scanners used in its distribution stations had been infected with malware.

The security breach had now been fixed.

It had detected a suspicious malware infection in some of the parcel scanners used by its logistics partners.

None of the illegally obtained data had been shared with any third parties.

Source: https://www.reuters.com/article/us-china-alibaba-cainiao/chinese-police-arrest-21-over-data-theft-at-alibabas-delivery-arm-xinhua-idUSKCN1M124T

TPRM report: https://scoringcyber.rankiteo.com/company/alibaba-group

"id": "ali138311022",
"linkid": "alibaba-group",
"type": "Data Leak",
"date": "09/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'More than 10 million',
                        'industry': 'Logistics',
                        'location': 'China',
                        'name': 'Cainiao Network',
                        'type': 'Corporate'}],
 'attack_vector': 'Malware',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 'More than 10 million',
                 'personally_identifiable_information': True,
                 'type_of_data_compromised': ['User names',
                                              'Phone numbers',
                                              'Parcel tracking numbers']},
 'description': 'Chinese police arrested 21 suspects in connection with the '
                'theft of customer information from Alibaba Group Holding’s '
                'logistics affiliate Cainiao Network. More than 10 million '
                'pieces of client data including user names, phone numbers, '
                'and parcel tracking numbers were stolen from Cainiao. Barcode '
                'scanners used in its distribution stations had been infected '
                'with malware. The security breach has now been fixed.',
 'impact': {'data_compromised': 'User names, phone numbers, parcel tracking '
                                'numbers',
            'systems_affected': 'Barcode scanners'},
 'initial_access_broker': {'entry_point': 'Barcode scanners'},
 'investigation_status': 'Resolved',
 'motivation': 'Data Theft',
 'post_incident_analysis': {'corrective_actions': 'Fixed the security breach',
                            'root_causes': 'Malware infection in barcode '
                                           'scanners'},
 'response': {'law_enforcement_notified': True,
              'remediation_measures': 'Fixed the security breach'},
 'title': 'Data Breach at Cainiao Network',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.