Update: 27/06/2020: Cyble has handed over the intelligence (along with the data) to the affected organization, who mentioned to Cyble (verbally) that the issue has been addressed.
Cyble has also removed the description and the details of the data leak on this post (as published on 06/25) in order to limit the interest of other cyber criminals looking out for such information in the darkweb.
Update as of 06/25/2020: During our regular darkweb monitoring, Cyble researchers identified an actor selling access to a dump allegedly from an open Amazon S3 bucket link (according to the actor). After acquiring and further analysis, we noticed that it had a bunch of folders containing confidential data of a renowned management consulting firm based in the USA.
Cyble has notified the organization, but no response has been received yet.
We recommend people to:
- Never share personal information, including financial information over the phone, email or SMSs
- Use strong passwords and enforce multi-factor authentication where possible
- Regularly monitor your financial transaction, if you notice any suspicious transaction, contact your bank immediately.
- Turn-on automatic software update feature on your computer, mobile and other connected devices where possible and pragmatic
- Use a reputed anti-virus and internet security software package on your connected devices including PC, Laptop, Mobile
- People who are concerned about their exposure in darkweb can register at AmiBreached.com to ascertain their exposure.
Cyble is a US-based cyber threat intelligence company with the express mission to provide organizations with real-time views of their supply chain cyber threats and risks.