A threat actor is selling account databases containing an aggregate total of 34 million user records that they claim were stolen from seventeen companies during data breaches. The seller told BleepingComputer that they are not responsible for hacking into the seventeen companies and is acting as a broker for the databases. All of the seventeen databases being sold were obtained in 2020, with the largest breach being Geekie.com.br. The most well-known affected company is Singapore’s RedMart that exposed 1.1 million records. None of these companies have previously reported recent data breaches prior to this week.
Source: https://www.bleepingcomputer.com/news/security/hacker-is-selling-34-million-user-records-stolen-from-17-companies/