Share this article on:
Insider threat claims to have access to the data of 28,000 individuals and the credit card and ID details of more than a million.
A member of a hacking forum has boasted of soon being able to dump the database of a large Australian organisation.
The individual – named Razalghul on the forum – said that he’ll soon be leaving the company and is currently selling access to the data.
“Database dump of an big [sic] Australian company,” the insider threat said in a post headed ‘DB dump customer info (Australia)’ on 1 August. “Currently selling 28k records, name, number, email, ID details etc.”
The threat actor also said they had access to a huge amount of credit card data.
“I’m leaving my company I work for,” said Razalghul, presumably named after the Batman villain.
“I am giving data from the company database more than a million credit card information, and ID details, complete with all necessary info in stages.”
A Telegram address was given to contact the threat actor.
Cyber Daily asked Mohan Koo, co-founder and president of Australian insider risk management firm DTEX Systems, about the prevalence of employees stealing data when they leave their organisation.
“Departing employees are among the most common sources of data theft and exfiltration; DTEX’s 2024 Insider Risk Investigations Report found 15 per cent of employees take sensitive IP when they leave an organisation while 76 per cent take non-sensitive proprietary data,” Koo said.
Koo added that unhappy employees are “particularly concerning because they often feel justified in causing harm to their former employer”.
“This example demonstrates the need for organisations to capture psychosocial and behavioural data early to be proactive in their management of insider risks before they become threats, and subsequent security incidents,” Koo said.
“Fostering a trusted workforce where employees have a sense of loyalty and respect for their employer is also key to maintaining security and resilience.”
Security Awareness firm KnowBe4 recently revealed that it, too, had almost fallen victim to another form of insider threat. The company went into commendable details of how they accidentally hired a North Korean hacker.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.