Hackers Accessed Asian Data Center Login Credentials for Top Corporations

Outlook spam filters broken, BlackCat hit PA health network, Coinbase employee login credentials stolen, Apple reveals more exploits that were patched, New group attacking China revealed, more

Check out my latest CSO column that looks at the top macro cybersecurity risks for 2023.

Photo by Taylor Vick on Unsplash

Researchers at Resecurity say that hackers gained access to the login credentials for data centers in Asia used by some of the world’s biggest businesses, a potential bonanza for spying or sabotage.

The data caches involve emails and passwords for customer-support websites for two of the largest data center operators, Shanghai-based GDS Holdings Ltd. and Singapore-based ST Telemedia Global Data Centres. About 2,000 customers of GDS and STT GDC were affected.

The information also included credentials for some of the world’s biggest companies, including Alibaba Group, Amazon, Apple, BMW, Goldman Sachs, Huawei, Microsoft, and Walmart. Hackers have logged into the accounts of at least five of them, including China’s leading foreign exchange and debt trading platform and four others from India.

GDS said in a statement that a customer support website was breached in 2021, …