Cyber Incident Victim: VK

In June 2016, cybersecurity monitoring service LeakedSource reported that approximately 100 million user credentials from Russian social networking platform VK.com (VKontakte) were being offered for sale on the dark web marketplace The Real Deal. The seller, operating under the alias "Tessa88," priced the database at 1 Bitcoin (approximately $580 USD at the time). Analysis of the 17GB data cache indicated the breach likely occurred between 2012 and 2013, though the exact intrusion method and timing remained unconfirmed. The exposed records contained usernames, account login identifiers, plaintext passwords, and associated phone numbers. LeakedSource obtained and verified portions of the dataset, noting that the volume of records suggested potential exposure of VK's entire user base, with some estimates reaching 170 million accounts. The seller "Tessa88" had previously been associated with the sale of compromised MySpace credentials, though the authenticity of all records in the VK database remained untested at the time of reporting.

The stolen credentials posed significant risks for credential-stuffing attacks and identity fraud, as criminals could leverage the personal information to bypass security checks on other platforms. The inclusion of plaintext passwords particularly enabled more efficient brute-force attacks against accounts where users had reused credentials. No evidence indicated that financial data or private messages were compromised in this incident. VK.com did not issue public statements regarding the breach confirmation or mitigation efforts based on the available source material. The incident highlighted ongoing challenges in protecting large-scale user databases, as stolen records from historical breaches continued to circulate in cybercriminal markets years after initial compromises.