Hacker Allegedly Sells Access to Law Enforcement Data from Major Crypto Firms
Summary:
An internet hacker allegedly has control over a law enforcement request profile, "KodexGlobal," and is offering to extract data from platforms like LinkedIn, Discord, and major crypto firms for a price. The cybersecurity firm, Hudson Rock, suspects the hacker has obtained these credentials through compromised law enforcement devices infected by Infostealer. There were previous attempts in December to sell access to Binance's law enforcement portal through KodexGlobal. The threat causes potential risks of identity theft, blackmail, and financial losses for users, especially among those holding cryptocurrencies.
An internet criminal alleges to have control of a law enforcement request profile, "KodexGlobal," which allows them to demand user information from numerous companies, including Coinbase, Binance, Chainlink. Hudson Rock, a cybercrime solutions specialist, claims the hacker is marketing this access on BreachForums. The entire account can be purchased for $5,000, or an Emergency Data Request (EDR) can be made for $300. They say they can request data from various platforms, including LinkedIn, Discord, Tinder, Binance, Coinbase, Chainlink, SendGrid.
KodexGlobal is a well-known platform utilized by law enforcement agencies for safe communication with each other. If a hacker gains unauthorized access to these profiles, they may falsify legal reasons to request private data about users leading to potential identity theft, blackmail, and financial losses for users, particularly those in possession of crypto currencies. According to Hudson Rock, it is highly probable the hacker infiltrated the security system by using credentials from Infostealer infections, usually sourced from compromised computers of law enforcement officers.
In December, the company revealed a hacker was seeking to trade access to Binance's law enforcement portal via KodexGlobal which KodexGlobal reportedly dismissed as a hoax yet Binance acknowledged such access according to the company. Images of three computers allegedly infected through global malware attacks in 2023 were presented, showing compromised login details with access to Binance's login panel from apparently compromised law enforcement officials in Taiwan, Uganda, and the Philippines. There was no confirmation on breaches to any Binance system, user data, or crypto thefts.
In another incident, Binance denied reports of a supposed leak of classified internal passwords and codes on GitHub for an extended period. They were quick to assert the security of their system and user accounts, reassuring their users through Binance's Customer Support that there is no existing leak from their system, and their accounts are safe thanks to several defenses like MFA, biometrics, and authenticators.
Published At
2/5/2024 8:05:44 AM
Disclaimer: Algoine does not endorse any content or product on this page. Readers should conduct their own research before taking any actions related to the asset, company, or any information in this article and assume full responsibility for their decisions. This article should not be considered as investment advice. Our news is prepared with AI support.
Do you suspect this content may be misleading, incomplete, or inappropriate in any way, requiring modification or removal?
We appreciate your report.