• About
  • Subscribe
  • Contact
Wednesday, May 7, 2025
    Login
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
No Result
View All Result
No Result
View All Result
Home Technology

Malicious player selling stolen data detected 

FutureCIO Editors by FutureCIO Editors
February 19, 2024
Photo by Pixabay: https://www.pexels.com/photo/guy-fawkes-mask-and-red-flower-on-hand-38275/

Photo by Pixabay: https://www.pexels.com/photo/guy-fawkes-mask-and-red-flower-on-hand-38275/

Group-IB identified a large-scale malicious group dubbed ResumeLooters by Group-IB’s Threat Intelligence unit that targets job search and retail websites of companies in the Asia-Pacific region, primarily in India, Taiwan, Thailand, Vietnam, China, and Australia.

Selling stolen data

The malicious player successfully infected at least 65 websites from November to December 2023 through SQL injection and Cross-Site Scripting (XSS) attacks, stealing databases containing 2,079,027 unique emails and other job seeker records.  ResumeLooters sold the data in Telegram channels. Group-IB notified victims to prevent further damage.

SQL attacks

“It is striking to see how some of the oldest yet remarkably effective SQL attacks remain prevalent in the region. However, the tenacity of the ResumeLooters group stands out as they experiment with diverse methods of exploiting vulnerabilities, including XSS attacks,” says Nikita Rostovcev, senior analyst at the Advanced Persistent Threat Research Team, Group-IB.

Nikita Rostovcev

Group IB found that ResumeLooters injected malicious SQL queries into 65 job search, retail, and other websites and retrieved 2,188,444 rows, of which 510,259 were user data from employment websites.

Preventing injection attacks

With a notable increase of threat actors in APAC, Group IB recommends using parameterized or prepared statements instead of directly concatenating user input into SQL queries to protect against injection vulnerabilities. 

Implementing comprehensive input validation and sanitization on both the client and server sides and performing regular security assessments and code reviews can help mitigate injection attacks.

Related:  PodChats for FutureCIO: The business case for open hybrid cloud
Tags: cybersecurityGroup-IBSQL injection
FutureCIO Editors

FutureCIO Editors

Strategic Insights for Chief Information Officers

FutureCIO is about enabling the CIO, his team, the leadership and the enterprise through shared expertise, know-how and experience - through a community of shared interests and goals. It is also about discovering unknown best practices that will help realize new business models.

Quick Links

  • Videos
  • Resources
  • Subscribe
  • Contact

Cxociety Media Brands

  • FutureIoT
  • FutureCFO
  • FutureCIO

Categories

  • Privacy Policy
  • Terms of Use
  • Cookie Policy

Copyright © 2022 Cxociety Pte Ltd | Designed by Pixl

Login to your account below

or

Not a member yet? Register here

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
Login

Copyright © 2022 Cxociety Pte Ltd | Designed by Pixl

Subscribe