Threat actor ‘IntelBroker’ has claimed yet another high-profile data breach, this time against Mashvisor, claiming to hold multiple user and agent databases exposing several hundreds of thousands of sensitive entries.
Mashvisor is a real estate data analytics company that provides various tools and services to help investors analyze and find profitable traditional and Airbnb rental properties across the United States. The platform leverages vast amounts of data on real estate markets, including historical property data, rental income, occupancy rates, and neighborhood analytics, to offer insights and forecasts for real estate investments.
Yesterday, threat actor IntelBroker, notorious for claiming various notable cyberattacks against large organizations, claimed that he, along with another hacker using the moniker ‘Sanggiero,’ breached Mashvisor. The post on a hacker forum alleges that the hackers discovered multiple flaws in Mashvisor’s platform, including bugs in their API, which they leveraged for the attacks.
The published sample data from the alleged breach of Mashvisor contains detailed personal and financial information about individuals, which, if authentic, would severely impact their privacy and security.
Specifically, the published samples contain the following data types:
- Full names
- Email addresses
- Phone numbers
- Home addresses
- Financial information, including status, mortgage type, budget, and down payment amounts
- Property location and purchasing preferences
- Lead (potential customer) information
- Database item creation timestamps
The threat actor has listed samples from four databases, a 35,000-rows listings database, a 57,000-rows agent leads database, a 746,000-rows user profile metadata set, and a 521,000-rows user database.
IntelBroker is attempting to sell the set of databases for a fixed price of $10,000, accepting payments only in the hard-to-trace Monero cryptocurrency. It is assumed that there will be multiple buyers, as no restrictions were set on that front.
The exposure of this data could have dire implications for the individuals involved, including privacy invasion, financial fraud, phishing attacks, identity theft, social engineering, and various forms of scams.
RestorePrivacy has contacted Mashvisor for a statement on these allegations, and we will update this post as soon as we hear back.
If you have interacted with Mashvisor and used its services in the past, like signing up on the platform to explore real estate investment opportunities and providing your personal and financial information, it is recommended that you stay vigilant for phishing attempts. Also, since leads are included in the database, the incident could impact even people who did not actively use Mashvisor.
Some of IntelBroker’s recent hack and data breach claims concern Facebook’s Marketplace, U.S. government contractor CACI, and the multinational tech giant General Electric.
Leave a Reply