Yazılar

Hacker Claims Breach of US Location Tracking Company Gravy Analytics

/in /tarafından

An unknown hacker is claiming responsibility for a breach at U.S. location tracking company Gravy Analytics, with screenshots of the boast circulating online. The breach details remain unclear, but a Russian-language post and screenshots uploaded early Sunday to XSS, a site frequented by cybercriminals, allege that the company was hacked, and large volumes of data were stolen.

Gravy Analytics, which merged with Unacast in 2023, has not commented on the situation. Attempts to contact both Gravy and Unacast were unsuccessful, and Gravy’s website was down on Wednesday. The leaked data, around 1.4 gigabytes, has been reviewed by experts who have confirmed its authenticity, raising concerns that the breach is legitimate.

This hack follows recent scrutiny from the U.S. government over companies, including Gravy, that collect and sell highly detailed location data. The Federal Trade Commission (FTC) had previously settled with Gravy Analytics and another broker, Mobilewalla, over deceptive practices in gathering location data without proper consent. The FTC has raised alarms over the vulnerability of Americans’ sensitive data, especially in the context of targeted advertising and surveillance.

 

Location Tracking Company Unacast Confirms Data Hack, Norway Notified

/in /tarafından

Unacast, a location tracking company, has confirmed to the Norwegian government that it fell victim to a hacking incident, as reported by Norwegian public broadcaster NRK on Friday. The breach, which was discovered on January 4, involved the theft of information from Gravy Analytics, Unacast’s data broker subsidiary, using a “misappropriated” key.

While claims surfaced last week regarding the breach of Gravy Analytics’ data, experts who reviewed the leaked data indicated that it appeared to be legitimate. However, Unacast has yet to comment publicly on the situation, despite repeated requests for information.

A notice to Norway’s data protection authority explained that a preliminary investigation suggested some of the stolen files might contain personal data, though further investigation into the breach’s exact timing and scope is ongoing. Unacast’s lawyers, BakerHostetler, are handling the legal aspects of the situation. Despite attempts, NRK has been unable to reach Norway’s data protection authority for comment.

 

FBI Warns of Call Log Breach Following Hack of AT&T’s System

/in /tarafından

The FBI has warned its agents that a significant data breach of AT&T’s system last year likely resulted in hackers stealing months’ worth of call and text logs, potentially compromising the identities of confidential informants. This breach, which impacted all FBI devices using AT&T’s public safety network, included sensitive information such as mobile phone numbers and the numbers agents communicated with, according to reports from Bloomberg News.

The breach occurred in April 2022, when hackers downloaded data from around 109 million customer accounts, which included records of calls and texts. The stolen records, while not containing the content of the communications, could still expose sensitive connections between FBI agents and their informants. This raises serious concerns about the security of confidential sources, especially since the breach could link agents to their secret sources.

In a communication to FBI agents across the country, the agency warned that their activities on the AT&T network were likely among the stolen data, putting both agents and their sources at risk. An FBI spokesperson emphasized the agency’s duty to safeguard the identities and safety of its confidential informants, who often provide critical information at great personal risk.

AT&T spokesperson Alex Byers responded to the breach, stating that the company had worked closely with law enforcement to mitigate the impact on government operations following the incident. This breach is part of a broader concern about cyber-espionage targeting U.S. telecom networks. The U.S. government has responded to these threats, including recent steps to counter Chinese-linked cyber-espionage efforts against U.S. telecom companies.

While AT&T and other major telecom firms such as Verizon have confirmed their networks were targeted by cyber hackers, they also assured that their systems are now secure after cooperating with U.S. law enforcement and government agencies.