Pearson gold heist suspect arrested after flying into Toronto from India
Another suspect is in custody in connection with the gold heist at Toronto Pearson International Airport last year, police say.
Hackers claim to have obtained a trove of data on 1 billion Chinese from a Shanghai police database in a leak that, if confirmed, could be one of the largest data breaches in history.
In a post on the online hacking forum Breach Forums last week, someone using the handle "ChinaDan" offered to sell nearly 24 terabytes (24 TB) of data including what they claimed was information on 1 billion people and "several billion case records" for 10 Bitcoin, worth about $200,000.
The data purportedly includes information from the Shanghai National Police database including names, addresses, national identification numbers and mobile phone numbers as well as case details.
A sample of data seen by The Associated Press listed names, birthdates, ages and mobile numbers. One person was listed as having been born in "2020," with their age listed as "1," suggesting that information on minors was included in the data obtained in the breach.
The Associated Press could not immediately verify the authenticity of the data samples. Shanghai police did not immediately respond to a request for comment.
The data leak initially sparked discussion on Chinese social media platforms such as Weibo, but censors have since moved to block keyword searches for "Shanghai data leak."
One person said they were skeptical until they managed to verify some of the personal data leaked online by attempting to search for people on Alipay using their personal information.
"Everyone, please be careful in case there are more phone scams in the future!" they said in a Weibo post.
Another person commented on Weibo that the leak means everyone is "running naked" -- slang used to refer to a lack of privacy -- and it's "horrifying."
Experts said the breach, if confirmed, would be the biggest in history.
Kendra Schaefer, a partner for technology at policy research firm Trivium China, said in a tweet that it's "hard to parse truth from the rumor mill, but can confirm file exists."
Such data leaks are fairly common, according to Michael Gazeley, managing director at Hong Kong-based security firm Network Box.
"There are approximately 12 billion compromised accounts posted on the Dark Web right now. That's more than the total number of people in the world," he said, adding that a majority of data leaks often come from the U.S.
Chester Wisniewski, principal research scientist at cybersecurity firm Sophos, said that the breach is "potentially incredibly embarrassing to the Chinese government," and the political harm would probably outweigh damage to the people whose data was leaked.
Most of the data is similar to what advertising companies that run banner ads would have, he said.
"When you're talking about a billion people's information and it's static information, it's not about where they travelled, who they communicated with or what they were doing, then it becomes very much less interesting," Wisniewski said.
Still, once hackers get data and put it online it's impossible to fully remove.
"The information, once it's unleashed, is forever out there," Wisniewski said. "So if someone believes their information was part of this attack, they have to assume it's forever available to anyone and they should be taking precautions to protect themselves."
A major cryptocurrency exchange said it had stepped up verification procedures to guard against fraud attempts such as using personal information from the reported hack to take over people's accounts.
Zhao Changpeng, CEO of Binance, a cryptocurrency exchange, said in a tweet Monday that its threat intelligence had detected the sale of "1 billion resident records."
"This has impact on hacker detection/prevention measures, mobile numbers used for account take overs, etc." Zhao wrote in his tweets, before saying that Binance had already stepped up verification measures.
In 2020, a major cyberattack believed to be by Russian hackers compromised several U.S. federal agencies such as the State Department, the Department of Homeland Security, telecommunications firms and defence contractors.
Last year, over 533 million Facebook users had their data published in a hacking forum after hackers scraped its data due to a vulnerability that has since been patched.
----
AP journalist Emily Wang in Beijing and researcher Chen Si in Shanghai contributed to this report.
Another suspect is in custody in connection with the gold heist at Toronto Pearson International Airport last year, police say.
Hailey and Justin Bieber are going to be parents. The couple announced the news on Thursday on Instagram, both sharing a video that showcases Hailey Bieber's growing belly.
A family of fifth generation farmers from Ituna, Sask. are trying to find answers after discovering several strange objects lying on their land.
A B.C. man has been convicted of assault with a weapon after using a skid-steer Bobcat to chase two homeless people from his lawn, injuring one of them in the process.
A Conservative government led by Pierre Poilievre would not legislate on, nor use the notwithstanding clause, on abortion, his office says, as anti-abortion protesters gather on Parliament Hill.
A southwestern Ontario woman has received an $8,400 bill from a hospital in Windsor, Ont., after she refused to put her mother in a nursing home she hated -- and she says she has no intention of paying it.
Miss Teen USA resigned Wednesday, sending further shock waves through the pageant community just days after Miss USA said she would relinquish her crown.
A grieving mother is speaking out after her 36-year-old son was shot and killed in North Preston, N.S., Wednesday night.
A small Ajax dessert shop that recently received a glowing review from celebrity food critic Keith Lee is being forced to move after a zoning complaint was made following the social media influencer’s visit last month.
A Listowel, Ont. man, drafted by the Hamilton Tigercats last week, is also getting looks from the NFL, despite only playing 27 games of football in his life.
A small Ajax dessert shop that recently received a glowing review from celebrity food critic Keith Lee is being forced to move after a zoning complaint was made following the social media influencer’s visit last month.
The Canada Science and Technology Museum is inviting visitors to explore their poop. A new exhibition opens at the Ottawa museum on Friday called, 'Oh Crap! Rethinking human waste.'
The Regina Police Service says it is the first in Saskatchewan and possibly Canada to implement new technology in its detention facility that will offer real-time monitoring of detainees’ vital health metrics.
The stakes have been set for a bet between Vancouver and Edmonton's mayors on who will win Round 2 of the Stanley Cup playoffs.
A grieving mother is hosting a helmet drive in the hopes of protecting children on Manitoba First Nations from a similar tragedy that killed her daughter.
A chicken farmer near Mattawa made an 'eggstraordinary' find Friday morning when she discovered one of her hens laid an egg close to three times the size of an average large chicken egg.
A P.E.I. lighthouse and a New Brunswick river are being honoured in a Canada Post series.
An Ontario man says he paid more than $7,700 for a luxury villa he found on a popular travel website -- but the listing was fake.