A data leak has caused concern among registered VirusTotal customers after their data was found on the internet. The leak allegedly contains the names, email addresses, and organization details of 5,600 account holders and secret services, including employees of the US intelligence agency NSA and German intelligence agencies.
The Austrian media STANDARD discovered a 313 KB file on the internet in July 2023, which was believed to be linked to the alleged VirusTotal cyber attack. German IT writer Günter Born described the file as “explosive” in a blog post. The characteristics of the data suggest that it may have been released from within the platform itself.
The compromised data in the alleged VirusTotal data leak includes around 20 accounts related to the US Cyber Command, the US Department of Justice, the FBI, and the NSA. Additionally, there may be accounts belonging to official bodies from the Netherlands, Great Britain, and Taiwan. The leak also exposed addresses from the Austrian Federal Ministry of Defense, the Interior Ministry, and employees of the German Federal Criminal Police Office and other organizations.
The authenticity of the leaked information has been a subject of speculation. The Austrian media STANDARD and German news magazine Der Spiegel believe that the data is likely genuine. Researchers have also raised concerns about the possibility of misuse of the leaked information.
VirusTotal, which offers research services for checking files for malware, has been operated by Google since 2012. The platform’s terms and conditions state that a third party may view the files, raising questions about data security and potential risks. Uploading sensitive files to similar platforms has attracted the attention of legal bodies, with the German Federal Office for Information Security issuing a security warning in March 2022 regarding leaked BSI alerts that were possibly uploaded to VirusTotal.
In light of the VirusTotal data leak, it is important for individuals whose personal information has been exposed to take immediate action to protect their financial security. This includes remaining vigilant for breach notifications, securing bank and credit card accounts, updating passwords, and considering two-factor authentication. Initiating a fraud alert on credit reports can also help prevent unauthorized credit applications. Monitoring financial accounts and credit reports for suspicious activity with free credit monitoring services is recommended. Some individuals may choose to freeze or lock their credit file to prevent fraudulent access.
While data breaches are concerning, taking prompt and cautious action can minimize potential damage and help individuals navigate the situation effectively. It is crucial for individuals to stay informed about cybersecurity risks and take necessary precautions to protect their sensitive information.
Note: This article is based on internal and external research obtained through various sources, and the information provided is for reference purposes only. Users are responsible for making their own judgments and relying on the accuracy and consequences of using this information.