LEO Access to Binance Data Allegedly Compromised by Hackers
Earlier this week, a BreachForums user by the name of Miembro announced the sale of access to the Binance data request portal, built and maintained to accommodate police officers and government officials around the world trying to track down cybercriminals.
The sale was paused due to a mistake involving buyers using a cryptocurrency mixer to send funds to sellers. It turns out the address is wrong.
Access to de-anonymized data
However, sales will reportedly resume in about a week once Mixer returns the funds.
Until then, it’s unclear how much data will be available to malicious actors. You can trust the seller and his past ratings indicate that he is reputable, if that term applies here. Your email, phone number, wallet ID, and transaction ID can be inspected using access provided by: attacker.
The price of the above information is only $10,000.
How was access obtained?
At this time, no details are available regarding the exact source of the data breach. However, security researchers at Hudson Rock have come up with a plausible hypothesis.
Hackers put cryptocurrency holders at risk by selling access to Binance’s law enforcement portal.
Details: https://t.co/f4avLWOVvK pic.twitter.com/urIJB5hXBH
— Hudson Rock (@RockHudsonRock) December 19, 2023
Binance is known to allow law enforcement officials access to its database through Kodex Global. According to Hudson Rock, the entry point appears to have been three computers infected with malware that allowed malicious actors to steal Kodex login credentials.
“The three logins shown in the image that provide access to Binance’s login panel appear to belong to hacked law enforcement officers from Taiwan’s Criminal Investigation Bureau (CIB), Uganda Police Force (UPF), and Anti-Cybercrime Group (ACG). “I belong to the Philippine National Police (PNP).”
Cybersecurity researchers subsequently contacted Binance about their theory. To date, no public response has been provided by the exchange.
Although the access provided may not allow for direct manipulation of Binance accounts, a breach could allow for information to be mined from sensitive accounts, de-anonymizing users and exposing them to targeted harassment, phishing attempts, and more.
A similar incident occurred in 2020 when Ledger client data was stolen. Hardware wallet users were later attacked with threats aimed at enticing them to send their cryptocurrencies to hackers. It is unclear whether these threats were carried out.
Currently, the Hudson Rock team recommends that all users enable 2FA, update their passwords, and exercise caution.
The post LEO Access to Binance Data Allegedly Compromised by Hackers appeared first on CryptoPotato.