GnosticPlayers

GnosticPlayers is a computer hacking group, who gained notability in 2019 for hacking Zynga[1][2] Canva,[3][4] and several other online services.[5][6]

The Independent reported that the GnosticPlayers had claimed responsibility for hacking other online businesses, and stealing hundreds of millions of credentials from web databases such as MyFitnessPal, Dubsmash, and fourteen others; and subsequently selling these credentials on the dark web.[7][8]

Reported Members

In 2020 Night Lion Security listed these people as members of GnosticPlayers.[9]

*Gabriel Bildstein Nclay, who went under the aliases OutofReach, Kuroi'SH, and Snoupinet, was the Public figurehead of the group.

*Maxime Thalet-Fischer who went under the aliases DDB, Casper, RawData, Pumpkin was a Seller for the group.

*Nassim Benhaddou who went under the aliases Prosox was a Member of the group.

*Christopher Meunier who went under the aliases Omnichorus, Peace, Revolt, Whitepacket, was a Hacker for the group.

*Dennis Karvouniaris, who went under the aliases Ping, Photon, Russian was a Seller and a Hacker for the group.

In 2019, Nassim Benhaddou, Gabriel Bildstein, and Maxime Thalet-Fischer were arrested after Gabriel said they hacked Gatehub.[10] The hack reportedly involved the theft of $9.5 million worth of cryptocurrency.[11] However, Night Lion Security believes that Gnosticplayers weren't behind the hack.[12]

These claims were later countered by several French magazines confirming Gabriel’s major involvement in the group, as well as the GateHub hack.[13][14]

In its 2020 Q2 report on cyber security, well known firm WatchGuard also attacked Night Lion’s claims, citing inconsistences and saying one couldn’t trust them.[15]

Companies affected

According to Night Lion Security GnosticPlayers have breached the following companies:[16]

500px • 8fit • 8tracks • Animoto • Armor Games • Artsy • Avito • BlankMediaGames • Bookmate • Bukalapak • Canva • Chegg • CoffeeMeetsBagel • Coinmama • Coubic • DailyBooth • DataCamp • DubSmash • Edmodo • Epic Games • Evite • EyeEm • Fotolog • GameSalad • Gatehub • Ge.tt • GfyCat • HauteLook • Houzz • iCracked • Ixigo • Legendas.tv • LifeBear • Live Journal • LovePlanet • mefeedia • MindJolt • MyFitnessPal • MyHeritage • MyVestigage • Netlog & Twoo • OMGPop • Onebip • Overblog • Petflow • PiZap • PromoFarma • RoadTrippers • Roll20 • ShareThis • Shein • Singlesnet • Storenvy • StoryBird • StreetEasy • Stronghold Kingdoms • Taringa • Wanelo • WhitePages • Wirecard • Yanolja • Yatra • YouNow • Youthmanual • Zomato • Zynga

Night Lion Security says that GnosticPlayers have been involved in 25% of non-credit card related data breaches between January 1, 2017 and June 30, 2020.[17]

See also

ShinyHunters

The Dark Overlord

References

  1. "Zynga data breach exposed 200 million Words with Friends players". www.cbsnews.com.
  2. Hern, Alex (December 19, 2019). "170m passwords stolen in Zynga hack, monitor says" via www.theguardian.com.
  3. says, Anon (May 28, 2019). "Millions of Canva users' data stolen as GnosticPlayers strikes again".
  4. "Canva data breach: Why hacker Gnosticplayers boasted to the media". June 3, 2019.
  5. Cimpanu, Catalin. "A hacker has dumped nearly one billion user records over the past two months". ZDNet.
  6. "Times when 'Gnosticplayers' hacker made headlines for selling troves of stolen data on dark web | Cyware Hacker News". cyware.com.
  7. https://www.independent.co.uk/life-style/gadgets-and-tech/news/dark-web-data-hackers-dubsmash-myfitnesspal-myheritage-cyber-security-a8775666.html
  8. "617 million hacked accounts put on sale on the dark web | Digit". www.digit.in.
  9. (PDF) https://www.nightlion.com/wp-content/uploads/2020/12/The-Dark-Overlord-Investigation-Report-Night-Lion_v1.01.pdf. Missing or empty |title= (help)
  10. (PDF) https://www.nightlion.com/wp-content/uploads/2020/12/The-Dark-Overlord-Investigation-Report-Night-Lion_v1.01.pdf. Missing or empty |title= (help)
  11. Cimpanu, Catalin. "Hackers steal $9.5 million from GateHub cryptocurrency wallets". ZDNet. Retrieved 2021-01-25.
  12. "GnosticPlayers Part 1: An Overview of Hackers Nclay, DDB, and NSFW". Night Lion Security. 2019-12-30. Retrieved 2021-01-25.
  13. https://www.leparisien.fr/faits-divers/cybercasse-du-siecle-youtube-nasa-l-impressionnant-palmares-des-deux-pirates-francais-17-07-2020-8354238.php
  14. https://france3-regions.francetvinfo.fr/occitanie/hautes-pyrenees/tarbes/hautes-pyrenees-21-ans-il-est-mis-examen-cyberbraquage-plus-8-millions-euros-1854400.amp
  15. https://www.watchguard.com/uk/wgrd-resource-center/security-report-q2-2020
  16. (PDF) https://www.nightlion.com/wp-content/uploads/2020/12/The-Dark-Overlord-Investigation-Report-Night-Lion_v1.01.pdf. Missing or empty |title= (help)
  17. (PDF) https://www.nightlion.com/wp-content/uploads/2020/12/The-Dark-Overlord-Investigation-Report-Night-Lion_v1.01.pdf. Missing or empty |title= (help)


This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.