Cybernews
  • News
  • Editorial
  • Security
  • Privacy
    • What is a VPN?
    • What is malware?
    • How safe are password managers?
    • Are VPNs legal?
    • More resources
    • Strong password generator
    • Personal data leak checker
    • Antivirus software
    • Best VPN services
    • Password managers
    • Secure email providers
    • Best website builders
    • Best web hosting services
  • Follow
    • Twitter
    • Facebook
    • YouTube
    • Linkedin
    • Flipboard
    • Newsletter

© 2021 CyberNews - Latest tech news, product reviews, and analyses.

Our readers help us create quality content. If you purchase via links on our site, we may receive affiliate commissions. Learn more

Home » Security » New Jersey fax company leaks 560k+ emails and dehashed passwords

New Jersey fax company leaks 560k+ emails and dehashed passwords

by Bernard Meyer
8 December 2020
in Security
0
New Jersey fax company leaks 560k+ emails and dehashed passwords
22
SHARES

The New Jersey fax company Fax Express appears to have had more than half a million of their customers’ emails and dehashed, plain text passwords leaked on a popular Russian hacking forum. According to its website, Fax Express has been in business for 40 years, having been in operation since 1980. 

Message on Russian hacking forum: "Today I have uploaded the Shreddrstoo Database for you to download for free, thanks for reading and enjoy!"

This apparent Fax Express database is connected to the domain shredderstoo.com, which seems to be a mirror site of faxexpress.com. The database leak was dehashed from hashed database tables originating from Cit0day.in leaks, in which 23,000 hacked databases were published in early November. 

The now-defunct Cit0day.in was a private service for cybercriminals that collected hacked databases and allowed their customers to access usernames, emails, addresses, and plain text passwords for a subscription fee.

We first attempted to contact Fax Express’ shredderstoo.com on November 16 to inform them about the leak, but have not received a response yet from the company.

What is Fax Express?

Fax Express is an Ocean, NJ-based business that sells fax machines, copiers, printers, shredders, and related items. Although its Contact Us page states that it’s been in business since 1980, its website seems to have been registered from 1996.

One interesting thing about this leaked data is that the website it refers to – shredderstoo.com – has a Fax Express logo. Going to faxexpress.com, it seems to be a mirror site. A quick Google search of specific contact info shows that there seem to be at least 8 domains connected in this Fax Express cluster:

  • shredderstoo.com
  • faxexpress.com
  • andshredderstoo.com 
  • copierstoo.com
  • printerstoo.com 
  • andprinterstoo.com 
  • copiersexpress.com (this one doesn’t have the Fax Express logo)
  • 4copiers.com

It’s uncertain right now whether the leaked data comes from all of these sites, from a sort of centralized database, or if it is only from shredderstoo.com. Seeing as there are more than 560,000 records, we’d guess that it’s from the entire Fax Express cluster.

The leaked data contains email addresses and plain text passwords, as seen in the sample screenshot below:

A sample of leaked emails and dehashed, plain text passwords

Who had access to the data?

The apparent Fax Express/shredderstoo.com data was freely available on a popular Russian hacking forum. For that reason, it’s reasonable to assume that a sizable portion of the users on the forum had access to the data.

We attempted to reach the owners of Fax Express on multiple occasions, but have not received a response yet.

What’s the impact of the leak?

While the apparent Fax Express/shredderstoo.com leak doesn’t contain particularly “sensitive” data, such as credit card, passport or social security numbers, this type of data is still very useful for cybercriminals.

Scammers can use email addresses and dehashed, plain text passwords for a variety of attacks. This includes not only phishing attacks, but also matching these dehashed passwords to other online accounts connected to the same email address or phone number.

Because most people reuse the same passwords for different accounts, cybercriminals can quickly escalate the type of data they are able to steal. If, for example, people use the same passwords on their email accounts, the cybercriminals might be able to take over all other email-connected accounts by changing the passwords on those accounts and confirming the changes in the email.

Next steps

If you are an administrator of Fax Express/shredderstoo.com or have a similar database, it’s important that you:

  • Hash your passwords properly, with something like the National Institute of Standards and Technology (NIST)-recommended SHA-256 or better
  • Beyond hashing, you should also salt your passwords
  • After that, you should patch your system in general, including your CMS. This is because breaches normally happen due to an outdated or unpatched system, weak password, or access control issues 

If you are now or have been a customer of Fax Express/shredderstoo.com, it’s likely that your data has been leaked. To see if you’ve been affected by this breach, we recommend you:

  1. Check our personal data leak checker to see if your email address is included in the leak. The CyberNews.com Data Leak Checker currently has the largest database of known breached accounts, with more than 15 billion compromised accounts.
  2. If your email address was leaked, you should change your password immediately. We recommend using a reliable password manager to create and store your passwords.
  3. Be vigilant: watch out for suspicious emails, as they may be phishing attempts. Avoid clicking on any links from these suspicious emails.
Share22TweetShareShare
Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Editor's choice

500M LinkedIn user records sold on hacker forum
News

Scraped data of 500 million LinkedIn users being sold online, 2 million records leaked as proof

by CyberNews Team
6 April 2021
5

We updated our leak checker database with more than 780,000 email addresses associated with this leak...

Read more
LinkedIn, FB, Twitter, Clubhouse apps seen on an iPhone

Recent Facebook, LinkedIn and Clubhouse leaks explained

15 April 2021
Cheapest tool to kill satellites? A computer

Cheapest tool to kill satellites? A computer

13 April 2021
A gift to criminals and tyrants? Soon, wireless devices could become object sensors

A gift to criminals and tyrants? Soon, wireless devices could become object sensors

13 April 2021
“Not ideal” from a privacy standpoint: Clubhouse API lets “anyone” scrape public user data

“Not ideal” from a privacy standpoint: Clubhouse API lets “anyone” scrape public user data

12 April 2021
  • Categories
    • News
    • Editorial
    • Security
    • Privacy
  • Reviews
    • Antivirus Software
    • Password Managers
    • Best VPN Services
    • Secure Email Providers
    • Website Builders
    • Best Web Hosting Services
  • Tools
    • Password Generator
    • Personal Data Leak Checker
  • Engage
    • About Us
    • Send Us a Tip
    • Careers
  • Twitter
  • Facebook
  • YouTube
  • Linkedin
  • Flipboard
  • Newsletter
  • About Us
  • Contact
  • Send Us a Tip
  • Privacy Policy
  • Terms & Conditions
  • Vulnerability Disclosure

© 2021 CyberNews - Latest tech news, product reviews, and analyses.

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy Policy.
Subscribe For Security Tips And CyberNews Updates
Email address is required. Provided email address is not valid. You have been successfully subscribed to our newsletter!
Our Privacy Policy and Terms & Conditions

Home

News

Editorial

Security

Privacy

Resources

  • About Us
  • Contact
  • Careers
  • Send Us a Tip

© 2020 CyberNews – Latest tech news, product reviews, and analyses.