- The difficulties have confirmed a data violation of an old third party
- Hundreds of thousands of customers have lost sensitive information
- Pirates already use data to send phishing emails
The cloud -based streaming supplier has confirmed the suffering of a data violation after a hacker compromised one of the company’s former third parties.
“We recently read a data security incident involving a third -party service provider with whom we have stopped working last year,” said the company in an advertisement on X. “We cannot confirm any stream server has been raped.”
In mid-March 2025, a threatening player with the alias “victim” opened a new thread on Breachforums (a popular forum for all that concerns cybercrime) and said they stole sensitive information belonging to 210,000 distribution customers. The archives included the complete names of people, postal addresses, email addresses and telephone numbers, and their authenticity was confirmed by journalist Zach Bussey, who found his own information in the database.
False updates
Streamelements is a cloud-based platform that provides tools for livesters, including overlays, alerts, chatbot automation and tilting services.
Although he does not claim any fault on his side and changes the blame on the anonymous third party, the threat actor says that they in fact compromised an employee of diffusion with an infostealer.
This gave them enough access to exfiltrate the data, the archives containing information generated between 2020 and 2024.
Although there are not many things that a threat actor can do with the names, email addresses and phone numbers, they can always get involved in an identity flight or run tailor-made phishing campaigns, the success rate of which is generally better than generic.
To this end, streamements already warns its customers that phishing emails have started to go out, deceiving people with false e-mails of “data violation”.
“Heads up: crooks use this third-party breach as a bait to send false e-mails of” data violation “,” says a new X post. “These are not battery elements.
Do not open yourself, do not click, do not just report and delete. The violation is the subject of a survey and we will share updates via official channels when more information is available. »»
The company said that it had started handing out to customers affected to warn them of the possibility of attack. Waiting for, Bleeping Compompute The reports according to which the original station on Breachforums has been deleted.
Via Bleeping Compompute
