340 Million OnlyFans Profiles Allegedly Rebuilt from Leaks

A threat actor is selling a 340M-strong OnlyFans-linked dataset allegedly built by correlating old breaches and public data, not by hacking OnlyFans directly. This poses a risk to users' sensitive information. The attack vector is data correlation and aggregation.

1. The dataset was allegedly built by correlating old breaches and public data, not by hacking OnlyFans directly.
2. The impact scope is 340 million OnlyFans users, with sensitive information potentially exposed.
3. The attack chain involves data correlation and aggregation from public sources and old breaches.
4. Detection opportunity may lie in monitoring for unusual data aggregation patterns or suspicious user activity.

TA0003: Reconnaissance — empty array if unclear

OnlyFans users should be cautious when sharing sensitive information and monitor their accounts for suspicious activity. Implementing robust data protection measures and monitoring for data aggregation patterns can help mitigate this risk.