Aug 04, 2025
3 min read
The Telecommunications Company suffered a claimed cyber attack (29) .The issue of an uproar, in the theft to love steal personal custom information, Amazon AWS infrastructure and various county databases.
Clarer, the telecommunications company Clarer, has been admitted last Monday (29).The alleged labor will include 80 million customers' private data stolement, cloud aws and some company databases.
Invader Cybercriminous, known as Packetslut, sells access and data raised for about $ 9 million in the appropriate forum (30,000 XMR). There is evidence of CLRO entry into the AWS environment. This provides navigation in a sensitive environment but does not receive useful evidence of access to customer data.
"It was as if someone had been stolen from this boy, but then left the wallet on the sidewalk and I found it. Only pure luck," the attacker said
There are unknown destinations for AWS
To know the case, he contacted Claro.For example, if the access is not accessible to the lack of company (current ecosystem in internal AWS of internal AWS) as the customer's personal data is included.Currently, we have not returned.
"View: Complete management for American telephone company."This is not some of the real systems.We will send a golden mark for the heart of their Cloud experts, which is about 80 million employees and products of $ 9.7 billion."
CyberCrimon to draw attention of the buyers who buy buyers, "this is rarely and high.
The offer includes the following access:
- Cloud Infrastructure: AWS, VMWare, SSH, API ADMIN,
- Database: Prepkeyca postgreSQL, documentloader, Mongodb
- Codes: Tap, Devops and key storage
-Set: bucket s3 (log, setting and bills)
- Systems: Sonarqube, SQS and TerraForm
- credentials: "All types" exposed in the store parameter store
Feeling, escaping or lying.
Clubriminal packages are quoted in a sales relationship.
In your sales text, it is interesting to be aware that packages use a more educated language and expresses a wide experience of the work of Cloud structures.
In the interview, However, he mentioned something weird: "I am not always in a normal teaching, or a sign in this community."
The following is a full interview:
: Can you clarify the resources?
Packetslut: Usually, one of the experienced employees has given his credentials driven, as if I have discovered zero -D like hack.I just a sad person on his laptop standing on something.
Note note: Cyberk crime comments indicate their place in barely or interviews.The answer to the "other continent" is a curving ball to get a bent ball.Our dialogue took place in English.
: So there is no problem in receiving access?
Package: "No. No one like a person as stolen this man. But he left wallet at the pavement."
: I saw that you offer this for 30,000 XMR.Sencere, I find someone hard to pay you all. Did you manage to sell any part of what you got?
Packetslut: “Well, this is no more.This is my first attempt at this kind of sale.I have no contacts, and I do not know the details.In fact, it is easy, it is easy.Honestly, if there is any program of rewarding errors, I could contact them. ”
: Compatible match here comes with customers.What have they been introduced?
Packetslut: "Nothing has been found. I haven't got a chance. Over 80 million sellers."
: But don't sell their data?
Bags: "I don't have me. They closed the holes. I never download customer information."
: But you have written in the forum that the buyers can "deal with a large number of customer data".
- Read: Microsoft confirms hacking attacks on the SharePoint platform and warns of companies and governments
Pecal: "I wanted to leave it for more experienced than I when I sell something, he may be an experienced specialist. I don't know."
: So you say that in reality it is your first cyber -clim sale?
- Also read: 9 most of the PC antivrists most
Pack -Reluts: "I made a copy of me. I wouldn't say it's a sale it is confirmed that I have never been confirmed."
"I called all curiosity, and then hit the phone (laughs). That's not what I expected Clara. And up to 6 months."
: Reading two of your messages, it is known how you spell and the seller is not sold.
Paketologist: "I'm a smart guy, but I have experienced.
: No, I'm not looking for it.I am looking for a sincere answer about the sale.
Petcostleclum: "I answer honestly. I know you care or believe."
After this last message, the packages refused to respond.
It should be noted that "I don't know what I'm doing after receiving a potential buyer. There's an example:
How to protect
Our task is to inform you and prepare you for understanding the digital world that surrounds you.A little of you to improve the safety of your computer life:
- Please note pages and information with unacceptable suggestions, promotions or information and seek questions and seek formal channels);
- Keep positive antivirus on your mobile and your computer (avatch, kassky, eset, esetbytes etc.);
- has as confirmed from all your account (if possible on the third, without SMS);
- ask for help: If you have any questions about any link or message, ask someone else to understand the internet from you;
- Take care of the system and operating system with the latest updates, especially senior tourists, such as Chrome, Edge, Firefox and more.
- Follow the financial data in your name from the Central Bank Register
- Check the password
- use long (over 12 characters) and in complex slogans
- Change the password every 6 months and do not repeat the service
