The Nitro breach is not an isolated incident. It belongs to a growing class of breaches—a list that includes Verizon, Deep Root Analytics, and Booz Allen Hamilton .
While the specific initial access vector was not fully disclosed by Nitro, security analysts and the subsequent sale of the data suggest a compromise of administrative credentials or an exploit of a vulnerable internal server. The Shiny Hunters group is known for targeting unsecured databases and utilizing credential stuffing or phishing to gain high-level access.
Nitro Software filed a disclosure with the Australian Securities Exchange (ASX) , stating they were investigating a security incident but saw "no material impact" on operations. nitro pdf data breach
When the leaked database became public, security researchers identified email addresses and document titles linked to major multinational corporations, including:
After an initial private auction starting at $80,000, the full database was eventually leaked for free on various hacker forums. What Data Was Exposed? The Nitro breach is not an isolated incident
(CVSS 7.5): A critical NULL pointer dereference vulnerability in the JavaScript implementation of app.alert() that could lead to application crashes or denial of service.
The scale of the breach came to light when the stolen databases were auctioned off on the dark web, and later leaked for free on a popular hacking forum. The compromised data included: The Shiny Hunters group is known for targeting
Shortly after the discovery, Nitro Software issued a statement confirming that an unauthorized third party had gained access to a database containing limited user information. While the company initially downplayed the severity, further investigations revealed a more extensive leak than first reported. What Data Was Compromised?
(secured, but still vulnerable to cracking) Document Titles from converted or shared files Company Names and IP Addresses