Researchers say they have identified the threat actor behind the massive Collection #1 data dump which exposed hundreds of millions of credentials on a hacking forum in January. The original database of breached emails totaling 773 million unique email addresses was discovered a popular underground hacking forum on Jan. 17. Multiple threat actors came forth after the data dump claiming to be the main seller of the compromised credentials including a threat actor called Clorox and forum member, Sanix, who was reportedly re-selling the credentials. Researchers assess with moderate confidence that C0rpz is the true main distributor.
Source: https://threatpost.com/collection-1-data-dump-hacker-identified/141447/