Threat Actor: Unknown
Victim: South American mining and oil companies
Key Points:
* Threat actor is offering unauthorized access to gold mining and oil companies in South America
* Access to two prominent mining companies is being sold, along with access to the network infrastructure of their IT service provider
* The gold mining company has a revenue of approximately 400kk (currency unspecified)
* The oil mining company’s access includes Remote Desktop Protocol (RDP) and other admin credentials, indicating a high level of system infiltration
* The attackers may have compromised not only the mining companies but also their service providers
* The price for this illicit access is set at $2000
In a concerning development, a threat actor has emerged, claiming to offer unauthorized access of gold mining and oil companies operating in South America. According to the intercepted forum communication, access to two prominent mining companies is being offered for sale, with a bonus access to the network infrastructure of the IT company servicing them.
For the gold mining company is revenue at approximately 400kk, though the exact currency remains unspecified. he oil mining company’s access is being sold with Remote Desktop Protocol (RDP) and other admin credentials, indicating a high level of system infiltration. It suggests that the attackers may have penetrated deeper into the supply chain, compromising not only the mining companies but also their service providers.
Furthermore, the threat actor has established price for this illicit access at $2000.
Source: Original Post