Alibaba data breach exposes 1.1 billion pieces of data

Usernames and mobile numbers were included in the breach which affected Taobao, Alibaba’s shopping website

Alibaba’s shopping website Taobao was trawled for 8 months which resulted in over 1.1 billion pieces of user information being collected by a software developer.

The unnamed developer used web-crawling software in November 2019 and gathered information including user IDs, mobile-phone numbers and customer comments, as reported by the Wall Street Journal.

A criminal verdict was published by the People's Court of Suiyang District stating that two criminals, the developer and his employer, were involved in the crawl, as reported by local media 163.com last week. 

When Alibaba noticed the data leaks from its shopping website, which occurred after several months, it informed the authorities, the court statement detailed.

Following a police investigation, the report suggests the two individuals were sentenced to imprisonment for over three years each and fined 100,000 yuan (£11,077)  and 350,000 yuan (£38,771) for "infringing on citizens' personal information."

IT Pro has contacted Alibaba for a statement.

In May, Air India stated that a cyber attack on the systems of its data processor affected around 4.5 million of its customers around the world. The breach involved personal information registered over a ten year period and exposed name, data of birth, credit card data, passport information and more.

Earlier this week, the US subsidiary of the Volkswagen Group suffered a data breach that affected 3.3 million customers after a vendor left unsecured data exposed on the internet. The company believes the data was unsecured at some point between August 2019 and May 2021 and an unauthorised third party may have obtained certain customer information. The data exposed included customers’ names, email addresses and phone numbers.

Featured Resources

The ultimate law enforcement agency guide to going mobile

Best practices for implementing a mobile device program

Free download

The business value of Red Hat OpenShift

Platform cost savings, ROI, and the challenges and opportunities of Red Hat OpenShift

Free download

Managing security and risk across the IT supply chain: A practical approach

Best practices for IT supply chain security

Free download

Digital remote monitoring and dispatch services’ impact on edge computing and data centres

Seven trends redefining remote monitoring and field service dispatch service requirements

Free download

Recommended

Japan to launch £637 million tech fund for AI and 5G
Policy & legislation

Japan to launch £637 million tech fund for AI and 5G

18 Oct 2021
Microsoft to shutdown LinkedIn in China
Careers & training

Microsoft to shutdown LinkedIn in China

15 Oct 2021
Acer confirms breach after cyber attack on Indian servers
hacking

Acer confirms breach after cyber attack on Indian servers

14 Oct 2021
7-Eleven biometric data collection found in breach of Australian privacy laws
privacy

7-Eleven biometric data collection found in breach of Australian privacy laws

14 Oct 2021

Most Popular

Best Linux distros 2021
operating systems

Best Linux distros 2021

11 Oct 2021
HPE wins networking contract with Birmingham 2022 Commonwealth Games
Network & Internet

HPE wins networking contract with Birmingham 2022 Commonwealth Games

15 Oct 2021
Veritas Backup Exec 21.3 review: Covers every angle
backup software

Veritas Backup Exec 21.3 review: Covers every angle

14 Oct 2021