Info Data Leak

Deathnote Hackers Compromise GMA Network Several Project Files

kukublanPH

Threat Actor: Deathnote Hackers | Deathnote Hackers
Victim: GMA Network | GMA Network
Price: Low impact
Exfiltrated Data Type: Outdated project files

Key Points :

  • The breach occurred on August 24, 2024, targeting GMA Network.
  • It exploited a known vulnerability in the IBM Aspera file transfer system.
  • The compromised data primarily consisted of outdated project files, including “BATANGAS 2023,” “BATANGAS 2024,” and “CEBU MASTERCLASS.”
  • No sensitive or personal information was found in the exposed data, classifying the incident as low-impact.
  • The breach highlights issues within GMA Network’s IT infrastructure, particularly the reliance on unpatched systems.
  • The incident has drawn attention to internal challenges at GMA Network, including employee mistreatment and a toxic work environment.

Manila, Philippines – On August 24, 2024, a data breach orchestrated by Deathnote Hackers targeted GMA Network, resulting in the unauthorized access and exposure of several project files.

The breach, which took advantage of a vulnerability in the IBM Aspera file transfer system, has raised concerns, although the compromised data consists primarily of outdated project files.

What Was Exposed?

The files that were accessed during this breach include folders related to various GMA Network projects, such as “BATANGAS 2023,” “BATANGAS 2024,” and “CEBU MASTERCLASS.” These files, while belonging to projects, were determined to be outdated and incomplete, minimizing the potential damage. No sensitive or personal information was found within the compromised data, which is why the incident has been classified as low-impact.

How Did This Happen?

The breach was made possible due to a known vulnerability in IBM Aspera, a third-party file transfer system utilized by GMA Network. This vulnerability, which was discovered last year, had not been patched by the network, leaving it exposed to unauthorized access. The exploitation of this weakness allowed Deathnote Hackers to gain entry into the network’s system and extract the project files.

The Bigger Picture

While the data exposed may not be sensitive, this breach highlights underlying issues within GMA Network’s IT infrastructure, including reliance on outdated or unpatched systems. The incident has also brought renewed attention to internal challenges at the network, such as reports of employee mistreatment and a toxic work environment—issues that have been widely discussed but remain unresolved.

Source: https://kukublanph.data.blog/2024/08/26/deathnote-hackers-compromise-gma-network-several-project-files/

Tags: BREACH, VULNERABILITY, IMPACT