Recently the database of Pitney Bowes, a well-known company for its postage meters and other mailing equipment and services got breached by Maze ransomware operators. In order to make the organization aware of the data breach, they posted some of the sample data files on their website.
Pitney Bowes is a global technology company most known for its postage meters and other mailing equipment and services, and with recent expansions, into global e-commerce, software, and other technologies. The company was founded by Arthur Pitney, who invented the first commercially available postage meter, and Walter Bowes as the Pitney Bowes Postage Meter Company on April 23, 1920. Pitney Bowes provides customer engagement, customer information management, global e-commerce, location intelligence, and mailing and shipping services to approximately 1 million customers in about 100 countries around the world in 2016. The company is a certified “work-share partner” of the United States Postal Service and helps the agency sort and process 15 billion pieces of mail annually. Pitney Bowes has also commissioned surveys related to international e-commerce. Pitney Bowes is based in Stamford, Connecticut, and operates a 300,000-square-foot Global Technology Center for manufacturing and engineering in Danbury, Connecticut. The company has 33 operating centers throughout the United States, and additional offices in Hatfield (United Kingdom), New Delhi, and Tokyo. As of December 2016, Pitney Bowes employed approximately 14,000 people worldwide.
Below is the message been posted by Maze ransomware operators on their website-:
Once again, the Cyble Research Team has verified and reported this data leak, as they have been doing for previous data breaches. The data leak includes highly sensitive and financial documents and data of the company such as the company’s revenue forecasts, Sales invoices, client’s information, government-related documents, ID cards, and many more. Below are the snapshots of a few of the sensitive leaked files from the large lot.
Looking at the rapidly increasing number of cyberattacks, Cyble has come up with the vision to assist the organizations in protecting themselves from cyberattacks. To accomplish its vision, Cyble not only holds the largest data breach monitoring search engine that holds over 40 billion darkweb records but also provides the services which include enabling faster detection of cyber threats via Cyble Vision and providing clear visibility to third-party cyber threats and risks via their Third-Party Cyber Risk Intelligence Platform.
Cyble Inc.’s mission is to provide organizations with a real-time view of their supply chain cyber threats and risks. Their SaaS-based solution powered by machine learning and human analysis provides organizations’ insights to cyber threats introduced by suppliers and enables them to respond to them faster and more efficiently.
Cyble strives to be a reliable partner/facilitator to its clients allowing them with unprecedented security scoring of suppliers through cyber intelligence sourced from open and closed channels such as OSINT, the dark web, and deep web monitoring and passive scanning of internet presence. Furthermore, the intelligence clubbed with machine learning capabilities fused with human analysis also allows clients to gain real-time cyber threat intel and help build better and stronger resilience to cyber breaches and hacks. Due to the nature of the collected data, the company also offer threat intelligence capabilities out-of-box to their subscribers.