A threat actor named MustF4st advertised the sale of unauthorized access to a U.S.-based insurance company with extensive network infrastructure. The compromised access includes high-privilege credentials, sensitive data, and system controls, emphasizing the ongoing risks to large enterprise networks. #MustF4st #InsuranceCompanyAccess
Keypoints
- The targeted company is an American insurance firm with over 14 offices and 1,500 connected machines.
- MustF4st listed the sale of access including RDP, NetExtender, Local Admin, and Domain Admin privileges.
- The compromised environment reportedly utilizes CrowdStrike security and Veeam backups of 28TB.
- The dataset was sold for $8,000 USD, encompassing sensitive systems, databases, and developer/tester machines.
- The attack highlights the sale of high-privilege access to critical corporate infrastructure on the dark web.
DarkWebInformer.com Providing intel from some of the darkest places on the Dark Web & Clearnet. Breaches, Darknet Markets, Ransomware, Threat Alerts, & more!Read More: https://darkwebinformer.com/alleged-sale-of-access-to-an-unidentified-insurance-company-in-usa/