On August 13, The Los Angeles Times reported a data breach potentially exposing the Social Security numbers of U.S. citizens.
The breach involved over 277.1 gigabytes of sensitive data, spanning multiple decades, and containing 2.9 billion records of Personally Identifiable Information (PII).
The compromised data, including names, addresses, and relative information, was allegedly offered on the dark web for $3.5 million.
A class-action lawsuit, filed in U.S. District Court in Fort Lauderdale, Florida, claims that in April, a hacking group known as USDoD stole personal records from National Public Data, a company providing information for background checks.
Recent reports suggest that cybersecurity firm CrowdStrike has identified the hacker behind USDoD as 33-year-old Luan B.G., a resident of Minas Gerais, Brazil.
This follows a July 2024 incident where the hacker claimed to have stolen and leaked a 100,000-line Indicator of Compromise (IoC) list from the company.
CrowdStrike’s response was reportedly swift, occurring within a month.
According to Tecmundo, a Brazilian publication that first reported this development, the hacker’s identity and relevant information have been sent to authorities by the cybersecurity company.
The situation remains fluid, with more details expected to emerge.
Meanwhile, French cybersecurity researcher Baptiste Robert has provided an analysis of events on social media platform X.
Today, the famous hacker USDoD has been doxed by CrowdStrike.
— Baptiste Robert (@fs0c131y) August 23, 2024
You want to know how?
It's #OSINT time!
