While the information was apparently collected years ago, it is not known why it is being released now. In last week’s edition of the dump analysis, researchers at Censtrys noted that the Belsen group is new. It is possible that this threat actor has recently purchased or aggregated information that is now being sold to the original hackers.
Constres also believes that, while the action may have been taken by the famous fortigate two years ago, after they gathered when they were discovered, “it is still active and capable of doing damage. The rules of the ceasefire in particular tend to remain unchanged unless certain security incidents prompt a review. And it is possible absolutely, that some of these firemen have changed ownership in a short period of time, but such cases are also rare.
The publication of this data means that threat actors have more things to work with to use social engineering and account, randy manager, senior director of threat detection “They can take mature passwords and, even thinking everything is changed, use the fact that people often use variations of the same password to guess the same passwords. Threat actors can also aim to do it via email to people whose email addresses appear in the leak, using aleveled lead to malware or redirect pages.”
Source link