Concerns have emerged regarding a potential data breach involving Shemaroo Entertainment, a well-known Indian media content production and distribution company. Allegedly, a user on a hacker forum is attempting to sell data that is said to be from the Shemaroo Entertainment data breach. This dataset is reported to contain 16.4 million user entries, with sensitive information such as email addresses, passwords, phone numbers, and additional personal details being exposed.
However, it is important to note that neither Shemaroo Entertainment nor any other source has confirmed a cyber attack or data breach at this time. This could mean that the claim made by the user on the hacker forum is untrue or potentially linked to failed negotiations.
In an effort to verify the legitimacy of this data sale, The Cyber Express has reached out to Shemaroo Entertainment via email requesting confirmation. Once a response is received, this report will be updated accordingly.
A screenshot has surfaced on social media, shared by Falcon Feeds, showing the dark web post made by the user on the hacker forum. The screenshot includes a brief description of Shemaroo Entertainment, highlighting its long history in the entertainment industry and prominent position. The post asserts that access to information is available and lists the following details that are supposedly up for sale: 1.5 million email and password combinations, 2.5 million phone numbers, and 1.7 million phone numbers from various countries. The user behind the post also claims to have data from other countries such as Malaysia, Bangladesh, Iran, and the UAE, among others. The total number of records said to be on sale is 16.4 million.
It is common for hackers to post about cyber attacks and data breaches on dark web portals in an attempt to put pressure on affected companies and damage their reputation. However, it should be noted that as of now, Shemaroo Entertainment’s website remains fully accessible.
Furthermore, another user on the same hacker forum posted about a website called Meta World, which is an Indian platform focusing on the crypto industry. At the time of writing, Meta World’s website was accessible. The post claimed that the user had uploaded the database of Meta World, including 3,000 lines of information such as user IDs, email addresses, and country-related data.
In a separate incident, threat actors left a message on Telegram claiming to target Indian government websites. The message, supposedly from a cybercriminal named “The Exploiter,” stated that they would launch cyber attacks on Indian websites. The message revealed that they had already taken down over eight Indian government sites, with more attacks planned in the near future. The hackers even provided the names of their team members and other groups supporting them in these cyber attacks, which included Team Anon Force and the BADS community.
Additionally, the Telegram channel of Team Anon Force implicated the government of Punjab as one of its victims.
Please note that the information provided in this report is based on internal and external research obtained through various means. The Cyber Express assumes no responsibility for the accuracy of the information or any consequences resulting from its use.