Thousands of credentials for accounts associated with New Zealand-based file storage service Mega have been published online.
The text file contains over 15,500 usernames, passwords, and files names, indicating that each account had been improperly accessed and file names scraped.
Some 87 percent of the accounts in the Mega file were found in a massive collection of 2,844 data breaches that he uploaded to the service.
Of those five said that they had used the same password on different sites.
Source: https://www.zdnet.com/article/thousands-of-mega-logins-dumped-online-exposing-user-files/
TPRM report: https://scoringcyber.rankiteo.com/company/mega-international
"id": "meg2348101122",
"linkid": "mega-international",
"type": "Data Leak",
"date": "07/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 15500,
'industry': 'File Storage Service',
'location': 'New Zealand',
'name': 'Mega',
'type': 'Organization'}],
'attack_vector': 'Improper access and scraping',
'data_breach': {'number_of_records_exposed': 15500,
'type_of_data_compromised': ['usernames',
'passwords',
'file names']},
'description': 'Thousands of credentials for accounts associated with New '
'Zealand-based file storage service Mega have been published '
'online. The text file contains over 15,500 usernames, '
'passwords, and file names, indicating that each account had '
'been improperly accessed and file names scraped.',
'impact': {'data_compromised': 'usernames, passwords, file names'},
'title': 'Mega File Storage Service Data Breach',
'type': 'Data Breach'}