Identity protection firm Aura suffers data breach exposing 900 000 records
4 hours ago
- #cybersecurity
- #phishing
- #data breach
- Aura experienced a targeted voice phishing attack leading to unauthorized access to 900,000 records.
- The breach involved an employee tricked into giving access, which was revoked within an hour.
- Exposed data mostly included names and email addresses from a marketing tool, with limited sensitive information.
- ShinyHunters claimed responsibility, advertising the stolen data, which included PII and internal corporate material.
- Have I Been Pwned added the incident, noting 90% of the data was already in their system from past breaches.
- Aura is notifying affected customers and offering support, advising vigilance against follow-up scams.