Bitrix24

In October 2022 a hacker forum member posted a database for sale containing information from the Russian business management platform Bitrix24. The threat actor initially offered a sample of 177 thousand records before making the complete set of 4 million records available for 6000 USD. The data eventually leaked into the public domain. The breach involved the compromise of user accounts including sensitive login credentials stored as MD5 hashes and financial balance information. The incident impacted numerous organizations relying on the service for CRM and project management operations within the Russian region.