Keenetic

More than a million households, primarily in Russia, faced data exposure when network equipment vendor Keenetic's Mobile App database was compromised. The database leak included 1.03 million records with user data, 929,501 records with device information, 558,371 configuration records, and service logs containing 53.8 million records. Exposed details included credentials, network configurations, and sensitive data, potentially allowing for privilege escalation and malicious firmware deployment. Despite mitigation steps taken two years prior and the company's low odds estimation of malicious activity, the data leak underscores the necessity for robust data protection protocols.

Source: https://www.scworld.com/brief/widespread-keenetic-router-data-breach-uncovered

TPRM report: https://scoringcyber.rankiteo.com/company/keenetic-tr

"id": "kee706032425",
"linkid": "keenetic-tr",
"type": "Breach",
"date": "3/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Network Equipment',
                        'name': 'Keenetic',
                        'type': 'Corporation'}],
 'attack_vector': 'Database Compromise',
 'data_breach': {'number_of_records_exposed': ['1.03 million user data records',
                                               '929,501 device information '
                                               'records',
                                               '558,371 configuration records',
                                               '53.8 million service logs'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['User data',
                                              'Device information',
                                              'Configuration records',
                                              'Service logs']},
 'description': 'More than a million households, primarily in Russia, faced '
                "data exposure when network equipment vendor Keenetic's Mobile "
                'App database was compromised. The database leak included 1.03 '
                'million records with user data, 929,501 records with device '
                'information, 558,371 configuration records, and service logs '
                'containing 53.8 million records. Exposed details included '
                'credentials, network configurations, and sensitive data, '
                'potentially allowing for privilege escalation and malicious '
                'firmware deployment. Despite mitigation steps taken two years '
                "prior and the company's low odds estimation of malicious "
                'activity, the data leak underscores the necessity for robust '
                'data protection protocols.',
 'impact': {'data_compromised': ['1.03 million user data records',
                                 '929,501 device information records',
                                 '558,371 configuration records',
                                 '53.8 million service logs']},
 'lessons_learned': 'The necessity for robust data protection protocols.',
 'title': 'Keenetic Mobile App Database Compromise',
 'type': 'Data Breach'}

Keenetic

Brown, Lisle/Cummings, Inc.

Westmoreland Mechanical Testing & Research, Inc.

Perkins & Co