Cybersecurity experts at CloudSEK have stumbled upon a major digital threat involving affiliates of the CYBO CREW, specifically CyboDevil and UNIT8200.
These cyber miscreants have been caught red-handed peddling a massive Indian Mobile Network Consumer Database.
This jaw-dropping database, weighing in at a whopping 1.8 terabytes, contains sensitive details of a staggering 750 million individuals. Imagine, it’s like the entire population of a small planet! Names, mobile numbers, addresses, and even Aadhaar details – no stone is left unturned in this treasure trove of personal information.
CloudSEK’s fancy-sounding XVigil platform detected the breach on January 23, 2024, after catching wind of a post by the notorious threat actor CyboDevil on some shady underground forum. And it seems like UNIT8200 wasn’t one to be left out of the spotlight, making a similar sketchy offering on Telegram just a week before.
Now, CyboDevil, the supposed mastermind behind this data heist, is playing the classic “who, me?” card. They’re denying any involvement in a breach and are shamelessly claiming to have acquired the data through some mysterious undisclosed channels within law enforcement. Right, because law enforcement agencies just hand out massive databases like candy.
Hold on to your hats, folks, because the threat actor is putting a price tag on this digital jackpot – a cool $3,000 for the whole enchilada. It’s like a cyber Black Friday deal, but instead of discounted electronics, you get people’s lives on sale.
CloudSEK’s Threat Intelligence & Security Research guru, Sparsh Kulshrestha, seems to be ringing the alarm bells, emphasizing that this data leak is no small fry. With the personal deets of 750 million individuals out in the wild, the potential for chaos – cyberattacks, identity theft, and whatnot – is off the charts.
The CYBOCREW gang, making waves since July 2023, includes the infamous CyboDevil and UNIT8200, who’ve been causing mayhem in the digital realm since they joined forces last June. These guys have a track record, linking them to major breaches across the board.
And this isn’t their first rodeo – previous hits include bragging about real-time access to Indian phone number KYC details and selling VIP access to the Indian vehicle database. They’ve got their fingers in so many digital pies; it’s like a cybercrime buffet.
To play nice, CloudSEK has done the responsible thing and informed the relevant authorities and potentially affected organizations about this breach. The compromised info is like a recipe for disaster – financial fraud, social engineering shenanigans, identity theft – you name it. Stay vigilant out there, folks. The digital Wild West just got a little wilder.
