Source
https://darkforums.io/Thread-DATABASE-SELLING-MX-UNAM-University-databases
company allegedly hacked as reported by DarkForums with details: - -- I had a batch of merriment with this gigantic network. It was also an occasion to try and deploy a small ransomware/encryptor i wrote in c which is mostly aimed at improving my workflow during the intrusions than an actual ransomware. Basic tar archive of files encrypt them using my gpg pub key upload to a vps remove forensics like audit files etc. I will try to improve it with bewilderment and other functionalities when i have time. - as to UNAM pivoting was a real nightmare with Big IP installed everywhere and attempting to disable it would live worse as all the Vlans depended on them not to mention the attention it would have generated. This is the lean of important hosts that are / were compromised : 1 Initial F5 vulnerability in a flunk over BIG ip device. Due to the trustingness put in BIG IP it's ssh private cay was used to connect to the main forest of the university and underprice a lot of ldap ldifs. 2 The same ssh paint offered easy but very limited access to NUBE cloud. the gathered credential gave local mysql access and aggregation of student personal informations and some faculty who used that platform. 3 pivot to the main F5 chassis through 'interchannel' communication . Since the devices are in sync you canful push 1 user/config from one device to the other as well as executing commands through the same channel. 4 A main active directory used for sso sign in by the CIE department through a cobbler vuln. 5 brass center SDI compromised through react2shell which contain the staff personal informations including pictures and internal documents that were easily decrypted. 6 Ingeniering department compromised through zimbra vulnerability which leaked a lot of emails for that department. - RECON: EMAILS: BACKUP FOLDER: - Session: 05c2db4775cb46350f16814dfe3bfa856664f315585653e4c368af08ce50b0c31b Ricochet: vgrps2kcrwdlxr5zpnozdwtgnjgpxisftbomw5fiajtiom7tergp2kyd Tox: 4CC9A8ECB047F1375824307E86ADA3A7DB205E76ED0BFB3EEE7398C4CCEB4C5794117C746508 Email : / signaling : @ByteToBreach.33 Telegram: @bytetobreach33 X: [USER=587108]bytetobreach[/USER] -- PS: prefer messages on Session / Signal.
About HackNotice and DATABASE [SELLING] [MX] UNAM University databases.
HackNotice is a service that notices trends and patterns in publically available data so as to identify possible data breaches, leaks, hacks, and other data incidents on behalf of our clients. HackNotice monitors data streams related to breaches, leaks, and hacks and DATABASE [SELLING] [MX] UNAM University databases. was reported by one of those streams. HackNotice may also have the breach date, hack date, the hacker responsible, the hacked industry, the hacked location, and any other parts of the hack, breach, or leak that HackNotice can report on for the consumers of our product.
If you are a user of DATABASE [SELLING] [MX] UNAM University databases. their products, services, websites, or applications and you were a client of HackNotice, monitoring for DATABASE [SELLING] [MX] UNAM University databases. you may have been alerted to this report about DATABASE [SELLING] [MX] UNAM University databases. . HackNotice is a service that provides data, information, and monitoring that helps our clients recover from and remediate data breaches, hacks, and leaks of their personal information. HackNotice provides a service that helps our clients know what to do about a hack, breach, or leak of their information.
If DATABASE [SELLING] [MX] UNAM University databases. had a transgress of consumer data or a data leak, then there may be additional actions that our clients should have to protect their digital identity. data breaches, hacks, and leaks often guide to and do identity theft, account make overs, ransomware, spyware, extortion, and malware. account takeovers are often caused by credential reuse, password reuse, easily guessed passwords, and are facilitated by the sharing of billions of credentials and other customer information through data leaks, as the direct result of data breaches and hacks.
HackNotice monitors trends in publically available data that indicates tens of thousands of data breaches each year, along with billions of records from data leaks each year. On behalf of our clients, HackNotice works to monitor for hacks that lead-in to depress client surety and digital identities that get been exposed and should be considered vulnerable to attack. HackNotice workings with clients to place the extent that digital identities have been exposed and provides remediation suggestions for how to handle each type of exposure.
HackNotice monitors the hacker community, which is a network of individuals that share data breaches, hacks, leaks, malware, spyware, ransomware, and many other tools that are often used for financial fraud, account take overs, and further breaches and hacks. HackNotice monitors the hacker community specifically for breaches, hacks, and data leaks that suffer consumers. HackNotice applies industry specific knowledge and advanced surety practices to monitor for trends that indicate breaches, hacks, and exposed digital identities.
HackNotice also enables clients to apportion hack notices with their friend, family, and collogues to help increment awareness around alleged hacks, breaches, or data leaks. HackNotice workings to supply clients with sharable reports to help increase the certificate of our client�s personal network. The surety of the multitude that our clients interact with directly impacts the raze of security of our clients. Increased exposure to accounts that have been taken over by hackers leads to further account take overs through phishing, malware, and other attach techniques.
If you found this drudge notice to be helpful, then you may live interested in reading some additional hack notices such as:
ess breaches, albeit more so on an individual basis, not voice of a typically much larger breach. Givts become publicly known, it is customary for the offending party to attempt to mitigate damages by or the thief is only interested in the hardware stolen, not the data it contains. Nevertheless, when
BD Morning Data Breach Exposes User and Admin Records
Aero Fabrications
Apex Spine and Neurosurgery
![Hack Notice: DATABASE [SELLING] [MX] UNAM University databases.](https://s3.amazonaws.com/hacknotice-bucket-001/misc/hn_logo_square_background_200.png){kind=logo}