Concerns have arisen over a potential data breach involving Shemaroo Entertainment, a prominent Indian media content production and distribution company.
A user on a hacker forum is allegedly selling data attributed to the Shemaroo Entertainment data breach. The user asserts that this compromised dataset contains 16.4 million user entries, exposing sensitive details such as email addresses, passwords, phone numbers, and additional personal information.
No cyber attack or Shemaroo Entertainment data breach has been reported, which could mean this claim is untrue or might be linked to unsuccessful negotiations.
The Cyber Express has emailed the media company to confirm the Shemaroo data sale on the dark web as claimed by the user. We will update this report based on their response.
Shemaroo data sale
The screenshot displayed above, which was shared by Falcon Feeds on tweet, was posted by the user on the hacker forum.
It includes a brief description of the company, which boasts a history of over six decades of specializing in entertainment, and holds a prominent position in the industry.
The Shemaroo data sale post claimed to give access to information and stated that the following details were up for sale –
- 1.5 million email and password
- 2.5 million phone numbers
- 1.7 million phone numbers from other countries
The Shemaroo data sale allegedly had user data from other countries like Malaysia, Bangladesh, Iran, and UAE, among others. The post also mentioned that the hackers had 16.4 million records on sale from the Shemaroo Entertainment data breach.
While several companies negotiate and pay the ransom, others maintain a clear stance of not giving in to cybercriminals’ demands.
Usually, hackers post about cyber attacks and data exfiltration on their dark web portals as an attempt to exert pressure on affected companies and tarnish their reputation.
The website of Shemaroo Entertainment was fully accessible at the time of writing.
Shemaroo data hacking and Indian companies under attack
Another user on the hacker forum posted the name ‘Meta World’, which is an Indian website that aims to build an ecosystem in the crypto industry. The website was accessible at the time of writing.
The hacker forum post, as shown above, claimed to have uploaded the database of Meta World, which included 3K lines of information. They uploaded user IDs, email addresses, and country-related data.
In another incident, threat actors were found leaving a threat note claiming to target Indian government websites. The cybercriminal by the name of, ‘The Exploiter’ wrote on Telegram that they will launch cyber attacks on Indian websites.
The message read, “In Next few days Indian govt. sites will be vanished in 3 days we down more than 8+ Indian govt. sites and now more dangerous attack coming soon…”
The hackers posted names of its team members and other groups supporting them in targeting the Indian government with cyber attacks. They were Team Anon Force and the BADS community.
The government of Punjab was also named as a victim by Team Anon Force in its Telegram channel.