PIA Hacked? Network Access and Database Up for Sale on the Dark Web

It should be noted that the firm KELA, stationed in Tel Aviv, tracks ransomware trends and identifies threats for international organizations and government setups.

0

  • Russian hackers have put the Pakistan International Airlines’ (PIA) network access and database on sale on the dark web.
  • The offer is still live on two Russian, and one English, dark web forums.
  • The same group of Russian hackers previously put 38 databases up for sale at a cumulative price of (at least) $118,700.

Pakistan International Airlines’ (PIA) network access and database hacked by Russian hackers.

A team of Israeli cyber threat researchers has revealed that Russian hackers have put the Pakistan International Airlines’ (PIA) network access and database on sale on the cyber underground.

Initially, only PIA’s network access was available for purchase on the dark web. A week later, the hackers also put all the databases in the airline’s network for sale. The cybercriminals posted a sample, which carried ‘all the people’s information who use PIA, including names, last names, phone numbers, and passports’.

Pakistan International Airlines’ (PIA) network access and database is being sold on the dark web.

InfoSecurity, a leading magazine on information security, reported:

A team at the darknet threat intelligence firm KELA spotted a threat actor offering the domain admin access to the airline for $4,000. The offer is still live on two Russian and one English dark web forums that KELA had been monitoring.

It should be noted that the firm KELA, stationed in Tel Aviv, tracks ransomware trends and identifies threats for international organizations and government setups.

Regardless of its job description, KELA did not report the incident to PIA due to the absence of diplomatic relations between the two countries. Instead, the firm made the news public through relevant mediums.

KELA recognized the selling of Pakistan International Airlines’ (PIA) network access and database on the dark web.

On the 9th of November, a KELA spokesperson said:

We have been tracking the threat actor who published the domain access for sale to PIA’s network last week.

The spokesperson further stated:

Most of the time, we see cyber-criminals purchase these initial accesses to gain an initial foothold into the victim’s network. From this foothold, they can then perform the lateral movement to advance their access privileges and potentially employ ransomware or some other type of attack.

Speaking about the PIA database sale sample, the spokesperson mentioned:

What the Russian hackers are selling includes around fifteen databases, all with different amounts of records — some around 500,000 records and some around 60,000–50,000 records. However, all the records stored in PIA’s network are included in the sale.

The hackers that hacked Pakistan International Airlines’ (PIA) network access and database have a history of hacking and selling databases.

The KELA spokesperson revealed that the same group of Russian hackers previously put 38 databases up for sale at a cumulative price of (at least) $118,700. Moreover, the threat research firm suspects that the hackers offer more records in private chats.

What are your thoughts on this? Please share with us in the comment section below.


Featured Content⭐


Most viewed in last 24 hours


24 گھنٹوں کے دوران 🔥


>