Between 3-6 GB of data was stolen.
Dutch information services firm Wolters Kluwer claimed its systems were compromised in a cyber-attack which allegedly resulted in the theft of personal data.
According to Cybernews, between three and six gigabytes were stolen, including individuals' full names, phone numbers, email addresses, home addresses, and employment and educational backgrounds.
Despite the absence of credentials in the dataset, Cybernews researchers warned that the exposed information could still be leveraged in personalised phishing intrusions.
“This kind of data can fuel highly personalised phishing campaigns and impersonation attempts,” they warned. “To some extent, threat actors could use data for identity impersonation and try to hijack victims’ accounts.”
The attacker behind the breach is allegedly looking to sell the dataset to a single buyer for at least $15,000.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
