Menu
Browse

Cyber Incident Victim: 17 Media

Date:

Apr 2016

Location:

Taiwan

Summary

A streaming application suffered a significant data breach where a hacker advertised stolen user information, including email addresses, weakly protected passwords, phone numbers, IP addresses, and device details. The compromised dataset, claimed to encompass 30 million accounts, was partially shared as proof in the listing. This incident exposed sensitive personal identifiers and authentication credentials linked to the platform's user base.

CIA Posture Motives Tactics, Techniques & Procedures
Available to members 1 motive 1 technique
Threat Actors Type Location
0 actors Available to members Available to members

Description

On or around April 29, 2016, a hacker publicly advertised a compromised dataset containing millions of user records from the photo-sharing and video-streaming application '17'. The exposed information included email addresses, weakly secured passwords, phone numbers, IP addresses, and technical details about users’ mobile devices. A sample of the stolen data was shared by the individual listing the database for sale, using the alias "Peace," to substantiate the legitimacy of the breach. The attacker asserted possession of records pertaining to approximately 30 million 17 Media users, though independent verification of this claim was not provided in available reporting. The breach represented a significant exposure of personally identifiable information and authentication credentials, creating risks of account hijacking, identity theft, and targeted phishing campaigns against affected individuals.

Cyber Incident Image

17 Media, founded by Popeo Chen, did not issue a public statement regarding the incident based on available sources. Security researchers and media outlets confirmed the validity of the sample dataset, confirming that real user credentials and associated metadata had been compromised. The primary documented response involved third-party advisories urging all 17 Media users to immediately change their account passwords as a precaution against unauthorized access. No technical details regarding the intrusion vector, such as exploitation of software vulnerabilities or insider threats, were disclosed in the referenced reporting. The incident underscored persistent security challenges facing rapidly growing social media platforms handling large volumes of sensitive user data during this period.

Sources
Sources available to members
1 source