Source codes from Microsoft, Cisco’s internal vulnerability manager, FireEye’s hacking tools, SolarsWinds customer file… The alleged Russian hackers of this hack which impacted more than 250 organizations around the world have just created the site ” solarleaks.net ”on which they sell several gigabytes of stolen data from hacked companies. The site was created two days ago. Nameservers have rather original URLs. These people have humor.
Data rates are high. So, count $ 600,000 for Microsoft data, $ 500,000 for Cisco data and 250,000 for SolarsWinds data. Data from FireEye is the most affordable, as it is “only” worth $ 50,000. The entire stock is offered for a whopping $ 1 million. Other data would be proposed in the coming weeks. “Consider this as a first draft”, point out the hackers.
Do you have a strong feeling of déjà vu? Yep, this way of doing things is very similar to that of the Shadow Brokers group which, in 2016/2017, had released some stolen hacking tools from the NSA and wanted to sell others on the Internet (even in the form of a monthly subscription, lol). If you’re interested, it’s too late, as the email address and links on the site are already broken.
Either way, it is likely not to be a good faith offer. SolarWinds hackers are very likely piloted by a Russian intelligence agency. The objective is therefore rather to create a diversion and ridicule the victims than to make money.
Source : Solarleaks.net
*The article has been translated based on the content of Sécurité – 01net by www.01net.com. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!