The case, which dates back to 2019, continues to shake the Deezer music platform. The data of more than 250 million users, including 46 million French accounts, were disseminated on the Internet at the beginning of December. This data leak was caused by a failure in a third-party service used by Deezer, reveals the specialized site RestorPrivacY.
According to the specialized site Zataz, who was able to get their hands on the hacked file, a large amount of private information would be involved, such as email addresses, dates of birth, IP address, geolocation, and usernames. In total more than 260 GB of data. The hacker also claims to have user playlists that include lists of artists listened to and music preferences.
The hacker uploaded data from a leak, which took place in 2019, from one of the platform’s former providers, with whom Deezer stopped working in 2020. This leak allegedly occurred after a misconfiguration of the provider’s storage system, details RestorePrivacy.
Deezer in trouble
According to Deezer, no passwords or payment details were compromised as a result of this attack, but hackers can use this information to target Deezer users with hacking and fraud. With the WorldDeezer claims to “work closely with the National Commission for Informatics and Liberties (CNIL)”.
On November 6, 2022, the hacker had already posted a sample of the data on the Breached hacking forum. Deezer had already communicated about the incident last November. During the last few months, Deezer has been experiencing some financial difficulties, after a difficult IPO and had to refocus his strategy, particularly in France, to reduce his losses.
Source: BFM TV
