Anonymous leaked confidential documents from the ministry servers against government corruption.
The online hacktivist Anonymous has conducted a sophisticated cyber attack on the government of Kenya by breaching its Foreign ministry server, stealing a trove of data and ending up leaking some of it on the Dark Web. The cyber attack was conducted under the banner of operation OpAfrica which was launched last year against child abuse, child labour and corruption in the African countries.
The dumped data contains confidential and non-confidential PDF and Docx files from the ministry server including email conversations, security related communication, international trade agreements and letters discussing the security situation in Sudan where government forces are fighting the Sudan People’s Liberation Army (SPLA).
“It’s too late for Kenyan government to expect us”: Anonymous
Other letters include conversation related to weapon clearance in Namibia, details about a business collaboration deal between Kenya and Oman, several other documents discussing state officials visiting the country. However, one internal email document is really interesting and talks about security alert for the ministry of foreign affairs’ staff sent by Information Communications Technology (ICT) stating that someone is trying to hack staff email IDs by sending phishing emails containing malicious links. The ICT administrator also shared a screenshot of an email sent by the hackers.
For readers information the dumped data does not include email addresses or passwords, however, in an exclusive conversation with one of the Anonymous hackers HackRead was told that:
We have 1TB of data but at the moment, we have leaked just one portion of it. In few days you will receive full disclosure of the data – We the Anonymous will stand against corruption, child abuse, and child labour! The government of Kenya should have expected.
The leaked data can be accessed using Tor Onion browser. Remember, in March 2016, Kenyan oil refinery website was also defaced for OpAfrica. Another group hacked South African job portal, Ugandan Ministry Of Finance and an IT company under the Rwandan government. The group also leaked details of 64,000 workers from Tanzanian telecom firm for OpAfrica.
Stay tuned for full disclosure of the data.
![The leaked database was discovered on Shodan on May 14th.[wp_ad_camp_1][hlink][/hlink]A huge online database containing private contact information including phone numbers and email IDs of roughly 50 million Instagram profiles including those of influencers and brands has reportedly been discovered by security researcher Anurag Sen. The affected individuals include famous food bloggers and celebrities too apart from social media influencers. This database, which belongs to Chtrbox reportedly contains 49 million records was hosted on AWS (Amazon Web Services) and got exposed because it wasn’t protected with a password. Chtrbox is a Mumbai-based marketing firm that connects social media influencers to brands looking to market their products.See: Facebook: Storing Instagram passwords in plain text & harvesting your emailsEvery single record in the exposed database contains data belonging to social media influencers’ accounts and in some cases, even the account location is also mentioned. Each account has different worth depending on the number of followers, reachability, and engagement on the platform.[wp_ad_camp_1][hlink][/hlink]Zack Whittaker of TechCrunch contacted Chtrbox to inform about the exposed database, and it was eventually removed. It must be noted that Anurag claimed to discover the exposed database on Shodan on May 14th but in a statement issued by Chtrbox stated that the database was only exposed for 72 hours and contained no personal data.Whittaker also tweeted on Chtrbox's statement and called it "inaccurate."On the other hand, the Instagram spokesperson stated that they are figuring out the issue in order to understand whether the data actually is of Instagram accounts or of other sources."We're also inquiring with Chtrbox to understand where this data came from and how it became publicly available," the spokesperson told TechCrunch.[wp_ad_camp_1][hlink][/hlink]Whittaker claims that the information in the database must have been scraped from various publicly available social media accounts as it also included data such as the cost of a particular post and number of likes, etc. Moreover, some of the influencers claim that they aren’t associated with Chtrbox.See: Russian Hackers Control Malware via Britney Spears Instagram PostsFacebook, which owns Instagram, told TechCrunch that it is reviewing the matter. It is worth noting that Instagram doesn’t allow account scraping while Chtrbox claims that its client base boasts of over 184,000 Instagram influencers. This number is much less than the number of records found in the exposed database.Previously, hackers were found compromising and holding several Instagram influencers accounts for ransom - In the other case, personal data of top celebrities on Instagram was stolen and traded online while several dark web marketplaces were also seen selling Instagram data of 6 million celebrities.Did you enjoy reading this article? Like our page on Facebook and follow us on Twitter.](https://www.hackread.com/wp-content/uploads/2019/05/database-with-millions-of-instagram-influencers-leaked-online-1.jpg)
