If you use the popular instant messaging service, your data could be for sale in the latest dark web WhatsApp data leak. No official report on whether anyone has exploited the exposed user data exists. Still, according to the co-founder and CEO of Binance Changpeng Zhao, Cybernews, and various sources, it is really happening: Millions of WhatsApp users’ data are up for sale on the dark web.
The WhatsApp user database, which includes user information from 84 nations, shows that nearly one-fourth of WhatsApp’s estimated two billion active monthly users may be at risk. This means that if you know at least 4 WhatsApp users, including yourself, one of your data may be being sold right now.
Dark web WhatsApp data leak 2022
On November 16, a hacker advertised on a well-known hacking site that they were offering a database with 487 million WhatsApp user mobile numbers. The dark web WhatsApp data leak file includes information on WhatsApp users from 84 different nations. Almost 100 million compromised users are just from Egypt, Italy, and the USA. Check out the full list below:
| Egypt | 44,823,547 | Yemen | 4,617,359 | Sweden | 1,092,140 |
| Italy | 35,677,323 | Kuwait | 4,468,134 | Ghana | 1,027,969 |
| USA | 32,315,282 | Libya | 4,204,514 | Philippines | 879,699 |
| Saudi Arabia | 28,804,686 | Bangladesh | 3,816,339 | Mauritius | 848,558 |
| France | 19,848,559 | Canada | 3,494,385 | Taiwan | 734,807 |
| Turkey | 19,638,821 | Palestine | 3,367,576 | China | 670,334 |
| Morocco | 18,939,198 | Kazakhstan | 3,214,990 | Croatia | 659,115 |
| Colombia | 17,957,908 | Belgium | 3,183,584 | Denmark | 639,841 |
| Iraq | 17,116,398 | Jordan | 3,105,988 | Greece | 671,722 |
| Africa | 14,323,766 | Singapore | 3,073,009 | Afghanistan | 558,393 |
| Mexico | 13,330,561 | Bolivia | 2,956,209 | Albania | 506,602 |
| Malaysia | 11,675,894 | Hong Kong | 2,937,841 | Norway | 475,809 |
| United Kingdom | 11,522,328 | Poland | 2,669,381 | Bulgaria | 432,473 |
| Algeria | 11,505,868 | Qatar | 2,526,694 | Japan | 428,625 |
| Spain | 10,894,206 | Argentina | 2,347,553 | Macao | 414,228 |
| Russia | 9,996,405 | Portugal | 2,277,361 | Namibia | 409,356 |
| Sudan | 9,464,772 | Cameroon | 1,997,658 | Jamaica | 385,890 |
| Nigeria | 9,000,131 | Lebanon | 1,829,661 | Hungary | 377,045 |
| Peru | 8,075,317 | Guatemala | 1,645,068 | Ecuador | 310,259 |
| Brazil | 8,064,946 | Tunisia | 1,595,346 | Iran | 301,723 |
| Australia | 7,320,478 | Switzerland | 1,592,039 | Slovenia | 229,039 |
| UAE | 6,978,927 | Uruguay | 1,509,314 | Lithuania | 220,160 |
| Syria | 6,939,528 | Panama | 1,502,310 | Brunei | 213,795 |
| Chile | 6,668,083 | Costa Rica | 1,464,002 | Luxembourg | 188,201 |
| India | 6,162,450 | Bahrain | 1,450,124 | Serbia | 162,898 |
| Germany | 6,054,423 | Finland | 1,381,569 | Cyprus | 152,321 |
| Netherlands | 5,430,388 | Czech Republic | 1,375,988 | Puerto Rico | 130,856 |
| Oman | 5,048,532 | Austria | 1,249,388 | Indonesia | 130,331 |
The information from the platform held by Meta has been compromised before. A similar incident, like the dark web WhatsApp data leak, occurred last year when data from 500 million Facebook users was compromised.
Because attackers frequently utilize this information for smishing and vishing attacks, we advise users to be vigilant of any calls from ominous numbers and unwanted calls and messages.
The seller assured Cybernews that all the numbers in the instance are those of active WhatsApp users. However, they did not disclose how they came into possession of the database, only saying they “applied their approach” to gather the information.
The potential uses of leaked phone numbers, such as phishing and marketing, underscore the necessity of an effective ID theft prevention technology.
Users of WhatsApp should take precautions because of the dark web WhatsApp data leak. Never reply to texts or calls from unknown numbers. This is because hackers could use smishing and vishing to obtain information. Smishing and vishing refer to hacker usage of fake links delivered over text or voicemail. Users risk losing important data or money if they click these links or follow their guidance.
Data breaches and hacks are today’s biggest problems. Check out the latest data breaches and hacks before we continue: CHI Health data breach, Facebook data breach, Uber security data breach, American Airlines data breach, Medibank cyber attack, and Binance hack.
Meta’s answer to the WhatsApp data breach
According to a spokesman for Meta, the report about the dark web WhatsApp data leak is “speculative” and based on “unsubstantiated screenshots.” He added that the business had not discovered any proof of a data leak on WhatsApp systems.
He emphasized that the business takes claims of security breaches of its services “extremely seriously” and had moved swiftly to investigate further the concerns presented in the news.
The official stated, “We have no information on how the alleged list of phone numbers was compiled or the extent to which they contain Hong Kong phone numbers. He continued that there were numerous ways to make a list of phone numbers online
How much worth of your WhatsApp data?
The hacker is reportedly selling dark web WhatsApp data leak files on the dark web. It states that the threat actor is asking $7,000 for the US dataset. The price is $2,500 for the UK dataset and $2,000 for the German dataset.
What should you do if your data has been leaked?
You should change the password for your email ID if the search result indicates that the dark web WhatsApp data leak has compromised it. Always use a secure password that is challenging to guess. If your mobile phone has been compromised, it is best to decline calls from shady or unauthorized callers. Do not click any links that you might get by SMS, either.
Outcomes of data breaches: Equifax & T-Mobile
The combined value of these two cases is $775 million.
Equifax data breach settlement
The credit reporting firm Equifax acknowledged on September 7, 2017, that one of its computer networks had had a data leak that had exposed the personal information of 143 million clients, which eventually rose to 147 million. These records included information about the customers’ names, residences, dates of birth, Social Security numbers, and credit card numbers, all of which may be exploited for fraud and identity theft.
Equifax agreed to establish a fund to provide customers with free credit monitoring, identity theft protection, and cash compensation of up to $20,000 per to people harmed by the event, per the deal’s conditions. Additionally, the company must pay court fees and government fines.
Take a closer look at how data breaches effects companies: Equifax Data breach settlement
T-mobile settlement
The cybersecurity vulnerability was first disclosed by T-Mobile and was made public on August 16, 2021. According to reports, almost 77 million consumers’ personally identifiable information was stolen due to the T-Mobile data breach. This contained database data such as addresses, dates of birth, social security numbers, driver’s license numbers, unique IMEIs and identification codes for client phones, etc.
If granted, the $350 million T-Mobile deal will represent US history’s second-largest payment for a data breach.
Take a closer look at how data breaches effects companies: T-Mobile Data Breach Settlement
