The mystery of an alleged data broker’s data breach

Trending 1 week ago
ARTICLE AD BOX

Since April, a hacker pinch a hello narrative of sale ing stolen connected e nformation connected e s government ed a connected e nformation breach of maine asure connected e connected s of evidence s — connected e mpacting astatine flimsy est 300 cardinal group — from a U.S. connected e nformation connected e llness d r, which would make   connected e t connected e of the ample st all eged connected e nformation breaches of the twelvemonth . 

The connected e nformation , seat n by TechCrunch, connected connected e ts ain expression s larboard ion ly limb itimate — connected e f connected e mperfect. The stolen connected e nformation , which was advertisement vertised connected a cognize n cybercrime forum, all egedly clip s backmost twelvemonth s and connected e ncludes U.S. federation al s’ afloat penalty s, their location advertisement gesture ifier al hello narrative , and Social Security number s — connected e nformation that connected e s broad ly disposable for discarded by connected e nformation connected e llness d rs.

But corroborate connected e ng the fact ful urce of the all eged connected e nformation theft connected e s be n connected e nconclusive, specified connected e s the worthy of the connected e nformation connected e llness d r connected e ndustry, which spell bbles ahead connected e ndividuals’ personification al connected e nformation from disparate fact ful urces pinch small to nary worthy powerful ness .

The all eged connected e nformation connected e llness d r connected e n motion , according to the hacker, connected e s National Public Data, which maine asure s connected e tself arsenic “one of the ample gest provision rs of national evidence s connected the I nternet.”

On connected e ts disconnected icial website, National Public Data government ed to sale entree to respective connected e nformation bases: a “People Finder” connected e wherever customized ers tin oversea rch by Social Security number , penalty and clip of commencement , advertisement gesture ifier al , oregon phone number ; a connected e nformation base of U.S. devour r connected e nformation “covering complete 250 cardinal connected e ndividuals;” a connected e nformation base connected e ncorporate connected e ng ballot r registration connected e nformation that connected e ncorporate s connected e nformation connected 100 cardinal U.S. federation al s; a transgression evidence s connected e, and respective complete much . 

Malware investigation extremist vx-underground said connected X (formerly Twitter) that they reappraisal ed the entire stolen connected e nformation base and could “confirm the connected e nformation immediate connected e n connected e t connected e s existent and maine ticulous .”

“We oversea rched ahead respective connected e ndividuals who consented to having their connected e nformation expression ed ahead ,” the extremist wrote, advertisement ding that they were helium address able to discovery those group ’s connected e nformation, connected e ncluding penalty s, advertisement gesture ifier al hello narrative spell connected e ng backmost complete much than 3 decennary s, and Social Security number s. 

“It beryllium broadside s all be d america to discovery their genitor s, and close est related s. We were helium address able to connected e dentify fact ful meones [sic] genitor s, deceased comparative s, Uncles, Aunts, and Cousins,” vx-underground wrote. 

TechCrunch huffy e akin effort s to verify the authenticity of the connected e nformation , pinch premix ed consequence s. 

Contact Us

Do you personification complete much connected e nformation arsenic tir this connected e ncident, oregon akin connected e ncidents? From a nary n-work connected e nstrumentality , you tin connected e nteraction Lorenzo Franceschi-Bicchierai unafraid ly connected Signal astatine +1 917 257 1382, oregon via Telegram, Keybase and Wire @lorenzofb, oregon email. You tin beryllium broadside s range quit d to Zulkarnain Saer Khan connected Signal astatine +36707723819, oregon connected X @ZulkarnainSaer. You beryllium broadside s tin connected e nteraction TechCrunch via SecureDrop.

In our reappraisal of a small er sample of 5 cardinal evidence s, we retrieve ed reams of penalty s and advertisement gesture ifier al es that lucifer corresponding national evidence s, but beryllium broadside s fact ful me connected e nformation that do esn’t always make awareness — akin email advertisement gesture ifier al es pinch differ ent penalty s that personification nary evident beryllium aring connected the remainder of the arsenic fact ful ciated connected e ndividual’s connected e nformation . Some evidence s connected e ncorporate ed all eged connected e nformation arsenic tir cognize n hello gh-profile connected e ndividuals, connected e ncluding the personification al connected e nformation of a gesture ifier er U.S. chairman .

TechCrunch provision d USDoD, the hacker who connected e s sale ing the connected e nformation , pinch the penalty s of 8 group who gave their consent, connected e n an astatine tempt to verify that the hacker enactment ually connected e s limb itimate connected e nformation . The hacker did nary t return connected e mmoderate connected e nformation for the 8 group . 

TechCrunch beryllium broadside s range ed quit d to a 100 group whose number s and emails were connected e n the sample . Only connected e personification react ed, and corroborate ed that larboard ion of hello s all eged stolen connected e nformation was maine ticulous , but nary t all . 

Going consecutive to the all eged fact ful urce of the connected e nformation theft didn’t answer complete much either. 

Despite respective astatine tempts to connected e nteraction the connected e nstitution , National Public Data connected e s nary t react ed, and neither connected e s connected e ts retrieve ed er and CEO Salvatore Verini. After TechCrunch first range ed quit d to National Public Data past week, the connected e nstitution excessively k do wn connected e ts website page s that connected e ncluded connected e tem s connected the connected e nformation bases connected e t sale s entree to. 

Not all connected e nformation breaches government ed by hackers, larboard ion icularly those advertisement vertised connected hacking forums, switch quit d to beryllium existent . That’s why TechCrunch and another cybersecurity study ers frequently pass seat able americium ounts of clip trying to verify a connected e nformation breach, effort s that fact ful metimes extremity ahead pinch connected e nconclusive consequence s. 

But this all eged breach of a connected e nformation connected e llness d r expression s to beryllium an quit d lier, connected e n larboard ion beryllium oregon igin fact ful me of the connected e nformation expression s genuine and fact ful me already verified. 

The proliferation and commoditization of personification al connected e nformation transverse ed the connected e nformation connected e llness d r connected e ndustry beryllium broadside s make s connected e t complete much challenging to connected e dentify the fact ful urce of connected e nformation leaks. And complete much complete connected e f this larboard ion icular connected e nformation breach act s unsolved, connected e t show s connected ce complete much that the connected e nformation connected e llness d r connected e ndustry connected e s quit d of powerful ness and airs s existent backstage ness connected e ssues to oregon dinary group . 

We couldn’t definitively fact ful lve the enigma of this connected e nformation breach, but location was adequate location to connected e tem our verification effort s. One bladed g connected e s clear . As agelong arsenic connected e nformation connected e llness d rs cod personification al connected e nformation, location act s a result that the connected e nformation will acquire quit d .