A threat actor claiming to offer network and mail access to an Indian Software Company. This company, known for its web hosting services, has become a target for malicious actors aiming to exploit sensitive data. With revenue totaling $462 million, the company’s network and client websites represent valuable assets vulnerable to exploitation. The threat actor is offering credentials to over 100 client websites, including phpMyAdmin, FTP, and SSH access.
Of particular concern is the access type being offered: SSH, employee email, and OpenVPN access, all belonging to a single firm. This consolidated access presents an alarming opportunity for malicious actors to infiltrate the company’s systems and wreak havoc.
Source: Original Post