Over 3.5 Million Leaked FlexBooker Data Records for Sale on Dark Web

Data amounting to 3.7 million digital records was put up for sale on a hacker forum on the dark web. The threat actor who is behind the data breach calls itself Uawrongteam. Whether the Ua in front of the threat actor's handle stands for Ukraine, like the country's domain extension, is anyone's guess.

FlexBooker Leaks Data

The FlexBooker database is just one of several chunks of data stolen by Uawrongteam just before the Christmas holidays of last year. The Racing dot com website focused on horse racing, was also a victim of the same threat actor, and records from its databases were also leaked.

FlexBooker, whose leaked data comprised the biggest chunk of records put up for sale on the hacker forum, is a website that allows businesses to set up a scheduling service for their customers.

The website sent out a notification to its customers, informing them of the data breach. According to the notice, the company's Amazon Web Services servers were compromised, which led to a temporary inability to deliver regular service. Additionally, "data storage" was "accessed and downloaded". Within 12 hours, FlexBooker resumed regular operation, but the data was already exfiltrated.

Partial CC Information in Leak

Information sourced by Have I Been Pwned - the web portal that allows users to check if any of their account information has been compromised - points to 3.7 million FlexBooker records having leaked. The exfiltrated information includes user email addresses, phone numbers, real names, and in a smaller subset of cases, even partial credit card data strings.

Security experts warned that due to the fact that the original attack appears to have been triggered by a DDoS, there may be lingering consequences for further attacks or a multi-vector attack that may have later stages.