A threat actor has allegedly put the database and platform access for Textom, a big data analysis and text mining platform, up for sale on a dark web forum. The victim, Textom, was developed by The IMC Inc., a company based in South Korea. The platform is known for its capabilities in collecting, processing, and analyzing unstructured text data from various online sources, making it a valuable tool for research, marketing, policy analysis, and business intelligence. The threat actor is asking for $30,000 in exchange for the compromised data and access.
The sensitive information allegedly exposed in the breach is extensive, containing multiple databases with personally identifiable information (PII) of the platform’s users. The shared samples suggest the leak includes user authentication details, payment records, and detailed personal profiles. A significant portion of the users appears to be associated with academic and research institutions in South Korea. The leak also reportedly contains YouTube API keys used by the platform.
The allegedly leaked data includes:
- User access tokens and refresh tokens
- Payment and transaction details
- Full names, dates of birth, email addresses, phone numbers, and physical addresses
- Hashed passwords
- YouTube API keys
- User activity logs and data processing information
