Here is what is being considered the biggest exposure from digital piracy ever to be recorded in cyber history. The details of almost 10 million users have been exposed in the dark web which supersedes the previous biggest recorded data heist that affected 1.5 million users. Not only the scale of the data piracy is huge but what is also amazing is the manner the scrupulous actors were able to pull off the act for so long and so neatly, with none having a whiff of what’s going on.
Here is what happened. Someone sets up a site that resembles Z-Library, itself an online shadow platform that is facing multiple charges of copyright infringement. Millions flock to the site ‘Z-lib[.]is’ where visitors are asked to register. Subsequent research by the Cybernews research team reveal people put in their real names as well as authentic payment info while registering.
Subsequently, it is on June 27th, 2024 that the folks at Cybernews came across a massive exposed database comprising the details of no less than 10 million users. Among the info leaked online include login credentials, real name, and crypto addresses. The scamsters possibly collected payments too, which of course they decamped with.
“This leak is extremely disturbing as it deanonymizes millions of crypto wallets and links related transactions to individuals who tried to access pirated content. Not only that compromises privacy, but also financial and personal safety,” Cybernews researchers said.
What is interesting is that the phishing site Z-lib[.]is was created within just days after the original Z-library domains were seized. That was back in November 2022. Unsuspecting visitors continued to repose their faith on Z-Library never knowing they were dealing with a phishing site and not the real one.
“The sheer amount of compromised accounts in this leak is almost unprecedented. It’s rare to find such malicious campaigns running for so long, so successfully, and attracting so many victims. The identified 10 million accounts likely exceed the number of accounts from the original Z-Library website before its takedown,” researchers said.
One reason visitors likely failed to identify the false site is that Z Library itself operated under several domains. Post their seizure by the authorities, there has been utter chaos and confusion prevailing, which the operators of the Z-lib[.]is site made the best of. The only solace for affected users, if it can be so said, is that the leaked data isn’t as widespread as yet.
However, those who believe they signed up at Z-lib[.]is will do good to comply with a few simple precautionary steps to prevent future heartaches. The primary thing to do of course will be to isolate the password they used to sign up at the site and refrain from using the same anywhere else. If you have multiple sites where you use the same password, change those immediately.
You should also stop using the crypto wallet tied to your Z-lib with immediate effect and opt for new ones. Further, block any suspicious looking Z-lib email addresses and domains in your email client or server. Make sure you don’t sign up for any service that is deemed illegal in your region. Better you get in touch with legal advisors who are experts in the field of cyber theft and related crimes.
“Most Bitcoin and Monero users do not know all the intricacies of these cryptocurrencies and how to anonymize the transactions properly. Cybercriminals may use this leak to track transactions and launch phishing campaigns targeted to steal cryptocurrency or even blackmail you. Immediately protect your remaining assets and ensure your wallet is protected,” the researchers said.