The infamous and considerably high-profile hacker going by the pseudonym “IntelBroker” has claimed to have efficiently breached one of many largest cybersecurity firms on the earth.
The hacker posted an commercial on the infamous cybercrime discussion board, Breach Boards, providing to promote entry to the compromised firm’s delicate knowledge and methods for a staggering $20,000 in XMR (Monero) cryptocurrency.
In keeping with the put up, the unnamed cybersecurity agency boasts an annual income of $1.8 billion, making this breach a major concern for the trade and its purchasers. IntelBroker claims that the entry they’re providing contains confidential and extremely crucial together with the next:
- SSL Passkeys and SSL Certificates
- SMTP Entry (Easy Mail Switch Protocol)
- Confidential and important logs filled with credentials
- PAuth Pointer Auth Entry (probably referring to ARM Pointer Authentication)
The hacker has acknowledged that they are going to solely present additional particulars upon contact and has requested events to message them on the discussion board. In an try to ascertain credibility, IntelBroker has agreed to make use of a intermediary or escrow service, reminiscent of Auto Escrow or one of many discussion board directors “@Baphomet,” to facilitate the transaction.
Moreover, the hacker requires proof of funds from potential patrons and has restricted the sale to “reputable members” of the discussion board, explicitly excluding “time wasters or default rank users.”
This worrisome growth highlights the specter of cybercrime and the potential vulnerabilities of even the most distinguished cybersecurity firms. If the claims made by IntelBroker are certainly true, the breach might have far-reaching penalties for the affected agency, its purchasers, and the broader cybersecurity scale.
Cybersecurity Agency Zscaler Initiates Investigations
Whereas it’s unclear which cybersecurity firm is being focused, Zscaler, a cloud safety firm headquartered in San Jose, California, is the primary group to launch investigations into IntelBroker’s claims to find out if the hackers have breached their methods.
In keeping with the corporate’s Safety Replace web page, investigations commenced on Could 8, 2024, at 17:20:00 UTC. By 19:18:00 UTC, Zscaler concluded that they’d discovered no proof of the breach.
“Zscaler’s priority is our customer and production environment and we have not discovered any evidence of incident or compromise to these environments. We are continuing our investigation and closely monitoring the situation.”
Zscaler
IntelBroker’s Profile
For the reason that emergence of IntelBroker in October 2022, the hacker has performed quite a few high-profile knowledge breaches, significantly concentrating on crucial infrastructure in the US. These embody breaches at House-Eyes, a Miami-based geospatial intelligence agency; Acuity Inc., a US Federal contractor headquartered in Reston, Virginia; Dwelling Depot; Los Angeles Worldwide Airport; Staffing Large Robert Half; partial Fb Market Database; DARPA-related accesses in Basic Electrical breach; Weee! Grocery; and several other others.
The hacker’s origins and associates are unknown; nevertheless, in response to the US authorities, IntelBroker is alleged to be the perpetrator behind one of many T-Cellular knowledge breaches.
As of now, the id of the focused firm stays undisclosed, and no official assertion has been launched addressing the alleged breach. Cybersecurity specialists and regulation enforcement businesses are more likely to examine the matter completely to confirm the authenticity of the claims and assess the extent of the injury.
Nonetheless, the claims from the IntelBroker hacker expose the susceptible state of cybersecurity. It additionally raises questions in regards to the capacity of cybersecurity corporations to guard their very own methods and knowledge, in addition to these of their purchasers, from decided attackers.
Keep tuned, as it is a growing story!
RELATED TOPICS
- Navy Satellite tv for pc Entry Offered on Russian Discussion board for $15Okay
- Cybersecurity agency exposes 5 billion knowledge breach information
- Federal company compromised leveraging compromised credentials
- Cybersecurity Agency Acronis Knowledge Breach: Hackers Leak 21GB of Knowledge
- Google Cybersecurity Agency Mandiant’s Twitter Hacked in Crypto Rip-off
- Cybersecurity Agency Hacks Itself, Finds DNS Flaw Leak AWS Credentials
