Kladovaya Zdorovya

We noticed a significant influx of credentials originating from a Russian e-commerce platform, Kladovaya Zdorovya, appearing on public forums. The discovery was made on January 8th, 2025, shortly after the data began circulating. What struck us was the relatively high proportion of password hashes that, while not directly reversible, were susceptible to offline cracking due to the presence of salts and common hashing algorithms. The sheer volume, exceeding 100,000 unique email addresses, immediately flagged this as a high-priority incident requiring thorough analysis of potential downstream impacts.

The breach, attributed to a database compromise, exposed 100,979 records from Kladovaya Zdorovya. The leaked dataset comprises a comprehensive user profile, including email addresses, phone numbers, usernames, first names, last names, and password hashes. Notably, the password hashes were generated using either SHA512 or MD5 algorithms, both of which, when paired with salts, still present a considerable risk of offline brute-force attacks, especially against weaker passwords. The data was subsequently disseminated via a Telegram channel, a common vector for illicit data sharing. This incident highlights the persistent threat of credential stuffing and account takeover attacks, particularly when hashed passwords, even with salts, are exfiltrated.

While specific news coverage on this particular Kladovaya Zdorovya breach is limited, the pattern of e-commerce data being compromised and shared on platforms like Telegram is a recurring theme in cybersecurity threat landscapes. Similar incidents involving Russian online retailers have been documented, often serving as sources for large-scale credential stuffing operations targeting other online services. The use of common hashing algorithms, even with salts, underscores the ongoing challenge of securing user credentials in the face of evolving cracking techniques, a point frequently discussed in OSINT reports from cybersecurity firms monitoring underground forums.

Email · Address · Phone · Number · Password · Hash · Username · First · Name · Last · Salt