What Happened
The multinational aerospace corporation Airbus announced that it is investigating a data leak after cybersecurity firm Hudson Rock reported that a hacker posted information on thousands of the company’s vendors to the dark web.
A threat actor who goes by the moniker “USDoD” announced he had gained access to an Airbus web portal by compromising the account of a Turkish airline employee.
The hacker claimed to have details on thousands of Airbus vendors.
Impact
The threat actors obtained the personal information of 3,200 individuals associated with Airbus vendors, exposed data include names, job titles, addresses, email addresses, and phone numbers.
A sample of the data leaked on BreachedForums shows that Rockwell Collins and Thales Group were among the affected vendors.
About the Hacker Dubbed USDoD
USDoD is a notorious hacker who claims to be a member of the infamous cybercrime group, Ransomed.
The hacker has been involved in multiple cyber attacks, including the hack of the FBI’s InfraGard database, a breach of Lockheed Martin, and DDoS attacks on Lithuanian government websites.
In December 2022, the FBI’s InfraGard US Critical Infrastructure Intelligence portal was hacked and a database containing the contact details of more than 80,000 high-profile private sector individuals was offered for sale by USDoD on the Breached cybercrime forum.
While the US Department of Defense has acknowledged that not only state actors but also criminal hackers pose a cyber threat to the US, it is not clear whether USDoD is affiliated with any state or non-state actor.
- QakBot Malware Dismantled in Major International Law Enforcement Operation
- CISA Disabled Two Systems Following Ivanti Compromise
- Nissan Acknowledges Data Breach Impacted 100,000 Customers
- US Dismantles Warzone RAT Malware, Arrests 2
- Cisco Warns about Brute-Force VPN and SSH Attacks
- Warning of Another Russian Home Router Botnet Attack