GETTR is a new pro-Trump social media platform created by Jason Miller, a former Trump advisor, the Twitter-like platform suffered a data breach.
The security breach comes a few hours after its launch on July 4.
A threat actor claimed to have scraped the private information of almost 90,000 members by abusing an unsecured API and published it on the RAID hacking forum.
The exposed data includes member’s email address, nickname, profile name, profile descriptions, birth year, location, personal website, avatar URL, background images, and other data.
The data published on the hacking forum belongs to two lots, which were respectively shared on July 1 and July 5.
The first set of data was the result of a scraping activity, while the second one was obtained by abusing the unsecured GETTR API.
Multiple websites confirmed the authenticity of the data.
“The leaked data was authentic, according to checks performed by The Record.” reported The Record.
The availability of such kind of information exposes members of the social network at risk of cyberattacks, such as phishing attempts and frauds.
Members of the social network should remain vigilant on any suspicious message pretending to be from GETTR.
(SecurityAffairs – hacking, data breach)