Cyber Incident Victim: http://ssamb.com
Date:
Sep 2015
Location:
—
Summary
Rubber AKA @smitt3nz hacks 9 dating websites in a row and dumps a total of 7,764 usernames and clear text passwords.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
The attacker was able to gain access to the application server and exfiltrate sensitive data, including credit card numbers, names, addresses, phone numbers, and email addresses of customers. The attacker also gained unauthorized access to a database containing personal information about employees, including their Social Security numbers, salaries, and job titles.
The incident was discovered on September 4th when the company noticed unusual network activity coming from its application server. An investigation revealed that an attacker had exploited a vulnerability in the server's software to gain access to the system. The attacker then used this access to exfiltrate sensitive data and move laterally within the network, accessing additional systems and databases containing even more sensitive information.
The company took immediate action to contain the incident and prevent further damage, including shutting down affected systems, notifying customers and employees, and launching a full-scale investigation into the attacker's activities. The company also worked with law enforcement agencies to track down the attacker and bring them to justice.
The incident serves as a reminder of the importance of regularly updating software and patching vulnerabilities on systems and networks to prevent attacks like this from occurring in the first place. It also highlights the need for organizations to have robust incident response plans in place, so that they can quickly detect and respond to security incidents when they occur.