In a series of revelations, several Chinese companies and institutions have fallen victim to significant data breaches, with millions of user records now circulating on dark web forums. These leaks span from financial institutions to online education platforms.
China Natural Gas Group Data Breach
One of the largest breaches involves the China Natural Gas Group, where data from over 7.5 million users was leaked in August 2024. The breach includes 5.8 million users’ ID cards, alongside detailed records containing personal information such as birth dates, addresses, phone numbers, and even product details. Key data fields in this breach include: “hir_carrier, cal_birthyear, id_province, userId, mobile, and idNo.”
Ding Talk Group Leak
The chat software Ding Talk, operated by Alibaba Group, also suffered a major breach in August 2024. A total of 720,000 records were exposed, with 300,000 entries revealing users’ full names. The compromised data consists of sensitive information such as mobile numbers, locations, and mobile carriers. Ding Talk is a widely used communication platform in China, and this breach raises significant privacy concerns for its users.
China Post Bank Loan Platform Breach
The JISUDAI loan platform, operated by China Post Bank, was another victim of a large-scale breach in July 2024. A database containing 4.8 million records was leaked, with extensive details about loan applicants, including their loan categories, amounts, and personal identification information. This breach affects individuals across China who have used the online platform for loan services, exposing both financial and personal data.
Provident Fund Data Leak
In a massive breach, the China Provident Fund’s user database was leaked in July 2024, exposing 7.5 million entries. Among the compromised data, a staggering 87 million records were found containing ID card information. The dataset includes personal details such as names, phone numbers, and employment information, putting millions of Chinese citizens at risk of identity theft and fraud.
51Talk Platform Breach
In August 2024, 51Talk, a leading online English education platform in China, experienced a breach that exposed 950,000 records. Personal details such as mobile numbers, full names, and location data were leaked. As a prominent platform for learning English, this breach affects a large portion of its user base, with sensitive data now available for malicious actors to exploit.
Dark Web Offers
The threat actor behind these leaks is actively offering these datasets for sale on dark web forums, encouraging potential buyers to contact them directly.
