10TB Data Heist: Dr.Web Confirms Cyberattack, Denies User Data Leak

Hackers claim that the company Dr.Web has fallen victim to a cyberattack, during which they allegedly breached its infrastructure and stole more than 10 TB of data. It is asserted that the attackers remained in the company’s network for over a month before the attack was detected. The hackers released a list of compromised resources, including various internal systems such as anti-theft services, bug trackers, and databases.

As a result of the leak, data from employees and users of the “Dr.Web Anti-Theft” product, as well as communications with technical support via a Telegram bot, may have been compromised. According to estimates from the Telegram channel Data1eaks, more than 4.4 million clients of the company, including both private individuals and government institutions registered under various domains, have been affected.

Dr.Web confirmed the attack, stating that the incident occurred in September. However, the company emphasized that the attack was promptly detected and halted: all compromised resources were disconnected from the network and subjected to thorough inspection. Law enforcement authorities are currently conducting an investigation, and Dr.Web is refraining from providing detailed comments to avoid interfering with the inquiry.

Company representatives also refuted part of the information published on Telegram channels, asserting that user data was not affected and that there is no threat to the security of antivirus databases or software modules. In response to the incident, security measures across all company resources have been strengthened, and the leaked data is being analyzed to identify potential breaches.