KEEN

KEEN is an alias used by an organization headquartered in the United States of America. The entity is known for organizing charitable initiatives, specifically a shoe drive that was launched to support communities affected by the coronavirus pandemic. This shoe drive was conducted as part of its outreach efforts during a period of heightened public health need. The organization's primary public activity, as documented in open sources, revolves around facilitating donation‑based shoe collections for those in need. While further details about its broader mission or product lines are not publicly disclosed in the available material, its involvement in the shoe drive establishes a clear charitable focus.

On March 19, 2020, cybercriminals directed an attack against the charitable shoe drive that KEEN was coordinating. The breach resulted in the exposure of a dataset comprising approximately 183 million credentials, a figure that includes a substantial number of Gmail user accounts. The attackers specifically targeted the infrastructure supporting the shoe drive, seeking to harvest login information from participants and supporters. The scale of the credential exposure places the incident among the larger data leaks reported during the early months of the pandemic. The inclusion of widely used email services such as Gmail indicates that the compromised data spanned multiple personal and professional accounts.

Beyond the credential theft, the breach compromised personal information such as names, email addresses, postal addresses, phone numbers, and associated account details. This aggregation of data heightened the risk of phishing campaigns, as attackers could leverage the detailed profiles to craft convincing fraudulent messages. Consequently, the incident raised broader security concerns for businesses and individuals whose information appeared in the exposed dataset. The event underscored the vulnerability of charitable online platforms to sophisticated cyber threats during periods of increased digital activity. Organizations involved in similar outreach efforts are advised to review their security controls in light of this case. The breach remains a notable example of how crises can be exploited by malicious actors seeking to maximize the impact of their operations.