Cyber Incident Victim: Meet Mindful
Date:
Jan 2021
Location:
United States of America
Summary
A threat actor known as ShinyHunters leaked a database containing sensitive personal information of approximately 2.28 million users from a dating platform, exposing real names, email addresses, precise geographic coordinates, birth dates, IP addresses, Facebook identifiers, bcrypt-hashed passwords, and profile details like marital status and preferences. The 1.2 GB dataset, distributed via a public hacking forum and downloaded extensively, enabled potential real-world identification of affected individuals despite excluding private messages. The platform did not publicly acknowledge the incident after multiple outreach attempts. This breach heightened risks of targeted harassment, sextortion, and credential-based attacks, compounded by ShinyHunters' history of similar large-scale data exposures.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On or around January 24, 2021, threat actor ShinyHunters leaked a database containing the personal information of 2.28 million users from the dating platform MeetMindful. The compromised data, packaged as a 1.2 GB file, was uploaded to a public hacking forum known for distributing stolen databases and made available as a free download. Forensic analysis of the leaked file indicated it constituted a dump of MeetMindful’s user database, containing registration and profile details submitted through the site and its mobile applications. Exposed information included full names, email addresses, ZIP codes, cities, states, body measurements, dating preferences, marital statuses, birth dates, precise latitude and longitude coordinates, IP addresses, bcrypt-hashed passwords, and Facebook account identifiers. While private messages between users were not present in the dataset, the breadth of personally identifiable information enabled potential correlation of anonymous dating profiles with real-world identities.
The leak represented an immediate operational security threat, as cybercriminal groups historically weaponize such datasets for sextortion campaigns and identity-based blackmail. The forum thread hosting the MeetMindful data attracted over 1,500 views prior to media reporting, suggesting widespread access among malicious actors. MeetMindful’s parent company, when contacted via Twitter by journalists, redirected inquiries to an email address but provided no substantive response within a three-day window. ShinyHunters, who had concurrently leaked millions of Teespring user records that same week, did not respond to requests for comment via previously active communication channels. The dataset remained publicly accessible on file-sharing platforms at the time of initial reporting, extending the window for unauthorized downloads and exploitation. Forensic indicators suggested the breach involved extraction of backend user records rather than compromise of frontend systems or interception of live communications.