A significant data breach at Anodot, a company known for business monitoring software, has resulted in hackers obtaining sensitive information from at least twelve clients. This situation leaves numerous customers vulnerable to extortion and the potential public dissemination of their stolen data. Reports from Bleeping Computer and BBC News suggest that the hacking group ShinyHunters is behind this breach, threatening to release the obtained data if their ransom is not fulfilled.
The incident highlights a growing trend of cybercriminals targeting software vendors that serve large corporate clients, thereby accessing private data from multiple companies simultaneously. Anodot acknowledged on its status page that it began experiencing issues on April 4, when its data connectors stopped functioning, limiting customer access to their cloud-stored information.
Investigations revealed that the hackers infiltrated Anodot and acquired authentication tokens that customers utilise for cloud access. Unfortunately, these tokens enabled the assailants to steal vast amounts of customer data stored in the cloud. Snowflake, one of Anodot’s cloud storage partners, subsequently cut access for Anodot’s customers after unusual activities were detected in its data stores.
Among the affected entities is reported to be Rockstar Games, known for its popular titles such as Grand Theft Auto and Max Payne. A representative from Rockstar stated that a limited amount of non-essential company information was compromised due to this breach but insisted that it had no significant impact on the company or its users. This isn’t Rockstar’s first encounter with such incidents; they were previously hacked in 2022, leading to the leak of an early trailer for the upcoming Grand Theft Auto VI.
Despite requests for comments, neither Snowflake nor Glassbox, which owns Anodot, responded to inquiries from TechCrunch concerning the breach. The ShinyHunters hacking group, primarily composed of English-speaking individuals, is notorious for their data theft and extortion tactics. They employ social engineering methods, such as impersonating IT personnel, to manipulate employees of major corporations into granting them access to networks.
The group has specifically targeted companies that handle substantial amounts of data on cloud platforms. Over the past year, they have breached firms like Anodot, Gainsight, and Salesloft, aiming to acquire passwords and tokens. Disturbingly, the stolen data has often included tokens that enabled hackers to infiltrate additional companies, further amplifying the risks associated with such data breaches.
Fanpage: TechArena.au
Watch more about AI – Artificial Intelligence
