Source
https://darkforums.io/Thread-DATABASE-SELLING-BR-Mundivox-Telecommunicatons-Database
company allegedly hacked as reported by DarkForums with details: ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ Mundivox works with the biggest entreprises in brasil most notably banks like Morgan Stanley. Access through a Teleport look a like software called Guacamole which is an open seed tool with bastion-like capabilities but mostly focused on RDP access through browser gateway. The browser access was impossible since it was being fronted by Fortiguard Watchguard and probably some whitelisting too. But for some reason web sockets completely circumvent everything which also lets you 'ride' live RDP sessions. Through Mundivox private tunnels i ended up having access to some very sensitive banks and institutions. But that's a story for another time. ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ Loot: B2B CRM / CRP Data. Internal emails from key staff members. All internal documents gathered from hosts and emails. Employees data hr Finances. There is some recordings of employees during act hours. Boring but very conclusive. -- Vulnerabilities : PRTG sensors scripts Magic info traversal Weblogic t3 Deserialization Guacamole bypass With the network being so huge i accidently stumbled upon a server belonging to some lawyers through ProxyShell . Another lawyers firm was also hosted in Mundivox Telecomunications and was compromised through VMware view Log4Shell. - DROPBOX: >> > << - Session: 05c2db4775cb46350f16814dfe3bfa856664f315585653e4c368af08ce50b0c31b Ricochet: vgrps2kcrwdlxr5zpnozdwtgnjgpxisftbomw5fiajtiom7tergp2kyd Tox: 4CC9A8ECB047F1375824307E86ADA3A7DB205E76ED0BFB3EEE7398C4CCEB4C5794117C746508 email : / signal : @ByteToBreach.33 Telegram: @bytetobreach33 X: bytetobreach -- PS: Prefer messages on session / Signal.
About HackNotice and DATABASE [SELLING] BR Mundivox Telecommunicatons Database.
HackNotice is a service that notices trends and patterns in publically available data so as to identify possible data breaches, leaks, hacks, and other data incidents on behalf of our clients. HackNotice monitors data streams related to breaches, leaks, and hacks and DATABASE [SELLING] BR Mundivox Telecommunicatons Database. was reported by one of those streams. HackNotice may also have the breach date, hack date, the hacker responsible, the hacked industry, the hacked location, and any other parts of the hack, breach, or leak that HackNotice can report on for the consumers of our product.
If you are a user of DATABASE [SELLING] BR Mundivox Telecommunicatons Database. their products, services, websites, or applications and you were a client of HackNotice, monitoring for DATABASE [SELLING] BR Mundivox Telecommunicatons Database. you may have been alerted to this report about DATABASE [SELLING] BR Mundivox Telecommunicatons Database. . HackNotice is a service that provides data, information, and monitoring that helps our clients recover from and remediate data breaches, hacks, and leaks of their personal information. HackNotice provides a service that helps our clients know what to do about a hack, breach, or leak of their information.
If DATABASE [SELLING] BR Mundivox Telecommunicatons Database. had a breach of consumer data or a data leak, then there may be additional actions that our clients should make to protect their digital identity. data breaches, hacks, and leaks often leading to and cause identity theft, account take overs, ransomware, spyware, extortion, and malware. account takeovers are often caused by credential reuse, word reuse, easily guessed passwords, and are facilitated by the sharing of billions of credentials and other customer information through data leaks, as the direct result of data breaches and hacks.
HackNotice monitors trends in publically available data that indicates tens of thousands of data breaches each year, along with billions of records from data leaks each year. On behalf of our clients, HackNotice works to monitor for hacks that take to depress client surety and digital identities that have been exposed and should be considered vulnerable to attack. HackNotice workings with clients to identify the extent that digital identities experience been exposed and provides remediation suggestions for how to handgrip each type of exposure.
HackNotice monitors the hacker community, which is a network of individuals that share data breaches, hacks, leaks, malware, spyware, ransomware, and many other tools that are often used for financial fraud, account read overs, and further breaches and hacks. HackNotice monitors the hacker community specifically for breaches, hacks, and data leaks that wound consumers. HackNotice applies industry specific knowledge and advanced security practices to monitor for trends that indicate breaches, hacks, and exposed digital identities.
HackNotice also enables clients to apportion hack notices with their friend, family, and collogues to help increase cognisance around alleged hacks, breaches, or data leaks. HackNotice works to provide clients with sharable reports to help increase the surety of our client�s personal network. The security of the multitude that our clients interact with directly impacts the level of certificate of our clients. Increased exposure to accounts that have been taken over by hackers leads to further account take overs through phishing, malware, and other attach techniques.
If you found this hack mark to live helpful, then you may be interested in reading some additional cut notices such as:
hout proper info security precautions, carry-over of such information to a system which is not ryption techniques.
ISO/IEC 27040 defines a data breach as: compromise of security thato be place in localize to protect the security and confidentiality of medical info as it is shared
https%3A%2F%2Ftrustarholdingsllc.com%2F https%3A%2F%2Fvistlabs.com%2F
ERNEST MAIER
Rogers Capital
![Hack Notice: DATABASE [SELLING] BR Mundivox Telecommunicatons Database.](https://s3.amazonaws.com/hacknotice-bucket-001/misc/hn_logo_square_background_200.png){kind=logo}