Collaborative online phone directory, Truecaller, has been hacked by Syrian Electronic Army. The hackers have reportedly grabbed data from more than 7 databases including the 450 GB main database. Apparently the hackers have data of over a million users and their Facebook, Twitter, LinkedIn and Gmail accounts.
News of hack comes after ehackingnews discovers a tweet which read "Sorry @Truecaller, we needed your database, thank you for it :) http://truecaller.com #SEA #SyrianElectronicArmy". And another tweet from the hacker group listed database host address,database name, username, and password in plain-text.
The group claims that exploited the outdated wordpress that was used by Truecaller, to gain access to the admin panel.
The company in it's blog post said "Truecaller does not store passwords, credit card information, or any other sensitive information about our users. It is false information that attackers were able to access our user's Facebook, Twitter, or any other social media passwords".
"We are still investigating the extent of unauthorised access of our database. We have outlined steps to help us deal with the situation. These steps include more complex security measures and various other tools we want to keep within the company", it added.