Aura, a provider of digital safety services, recently confirmed a data breach affecting nearly 900,000 records after an employee fell victim to a voice phishing attack. While the total number of records is high, the company specified that the breach impacted the sensitive data of approximately 20,000 current and 15,000 former customers.

The identity protection firm disclosed that the unauthorized access was facilitated through a marketing tool originally used by a company Aura acquired back in 2021. According to official communications, the exposed information was largely limited to names and email addresses. This incident highlights a significant irony for the company, as Aura primary business model revolves around selling identity theft protection, credit monitoring, and specialized tools designed to prevent phishing.

The breach gained public attention when the threat group known as ShinyHunters listed Aura on their data extortion website. The attackers claimed to have successfully exfiltrated 12 gigabytes of data, which they alleged included corporate files and a wide array of personally identifiable information belonging to the company's clientele. This claim put immediate pressure on the firm to address the scope of the exposure.

In a move to escalate the situation, the threat actors eventually leaked the stolen files online. The group stated that they chose to release the data because the company refused to meet their demands or reach a financial agreement. This public release followed what the attackers described as multiple attempts to negotiate with the firm over the stolen assets.

Despite the claims made by the hacking group regarding the volume and variety of the data, Aura maintains that the core of the exposure originated from the legacy marketing platform. The company continues to position itself as an all-in-one solution for online security, even as it manages the fallout from this social engineering exploit and the subsequent data leak.

Source: https://haveibeenpwned.com/Breach/Aura