VirtualMacOSX has allegedly suffered a data breach in which the data of 10,000 customers was leaked on a clear web forum known for cybercrime and data breaches. The exposed dataset included customer’s full names, company names, email addresses, complete physical addresses, phone numbers, passwords, password reset keys, financial details such as bank name, bank type, bank code, and bank account numbers. User support tickets containing user IDs, IP addresses, full names, emails, and full messages from customer interactions were also part of the leak. This type of exposed data presents substantial risks including account takeovers, fraudulent transfers, and potential physical risks.
Source: https://hackread.com/hackers-leak-virtualmacosx-customers-data-breach/
TPRM report: https://scoringcyber.rankiteo.com/company/virtualmac-glb
"id": "vir000061625",
"linkid": "virtualmac-glb",
"type": "Breach",
"date": "6/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 10000,
'industry': 'Cloud-based Computing',
'location': 'Global (102 countries)',
'name': 'VirtualMacOSX',
'type': 'Company'}],
'attack_vector': 'Forum Data Leak',
'data_breach': {'data_exfiltration': True,
'file_types_exposed': ['Text Files'],
'number_of_records_exposed': 10000,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Financial Information',
'User Support Tickets',
'Passwords']},
'date_detected': '2024-06-11',
'description': 'VirtualMacOSX has allegedly suffered a data breach in which '
'the data of 10,000 customers was leaked on a clear web forum '
'known for cybercrime and data breaches.',
'impact': {'data_compromised': ['full names',
'company names',
'email addresses',
'physical addresses',
'phone numbers',
'passwords',
'password reset keys',
'bank names',
'bank types',
'bank codes',
'bank account numbers',
'user support tickets',
'user IDs',
'IP addresses',
'full messages from customer interactions'],
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'initial_access_broker': {'entry_point': 'Clear Web Forum'},
'investigation_status': 'Ongoing',
'lessons_learned': 'Monitor bank statements, credit reports, and online '
'accounts for unusual activity. Enable multi-factor '
'authentication (MFA) and change passwords for all '
'accounts. Limit personal information online and use '
'strong, unique passwords.',
'recommendations': 'Monitor bank statements, credit reports, and online '
'accounts for unusual activity. Enable multi-factor '
'authentication (MFA) and change passwords for all '
'accounts. Limit personal information online and use '
'strong, unique passwords.',
'references': [{'source': 'Hackread.com'}],
'title': 'VirtualMacOSX Data Breach',
'type': 'Data Breach'}