Hudson Rock

Another great news coverage on Hudson Rock's latest investigation, with comments from the parent company of Sharefile by Jessica Lyons https://lnkd.in/dM6yVZst

"Hudson Rock suggests that attackers breached ShareFile, Nextcloud, and ownCloud environments used by organizations across multiple sectors, including aviation, defense, healthcare, utilities, mass transit, telecommunications, legal, real estate, and government." via BleepingComputer https://lnkd.in/dkTnGv-N

"Hudson Rock suggests that attackers breached ShareFile, Nextcloud, and ownCloud environments used by organizations across multiple sectors, including aviation, defense, healthcare, utilities, mass transit, telecommunications, legal, real estate, and government." https://lnkd.in/gG-3qCWG

BIG - We just uncovered dozens of companies hacked via cloud credentials from Infostealer infections, Terabytes of their data is actively being sold by a threat actor affiliated with a ransomware group (tl;dr below 🔽 ) 📰 New Blog - https://lnkd.in/dk3pZTV6 TL;DR - A prolific threat actor, "Zestix" (alias "Sentap"), is selling access to ~50 global corporations breached via credentials from Infostealer infections to cloud services Sharefile, Owncloud, and Nextcloud. Exposures Include: 🛡️ National Defense: Blueprints for the TF-X Fighter Jet and UAVs (INTECRO ROBOTICS). 🚆 Critical Infrastructure: Engineering schematics and security data for the LA Metro (CRRC MA). ✈️ Aviation Safety: 77GB of technical maintenance data for A320/A321 aircraft (Iberia Airlines). 🩺 Sensitive Protected Health Data: 2.3TB of health records for the Brazilian Military Police (Maida.health). Our research shows thousands more companies currently have exposed credentials to these cloud services circulating in criminal logs, including giants like Deloitte, Samsung Electronics, and the Centers for Disease Control and Prevention. Check Your Exposure: Hudson Rock identified many of these compromised credentials years before the actual breaches occurred. Stop the infiltration before it starts by checking your domain using our free cybercrime intelligence tools & asking for an ethical disclosure (tools linked in the blog).

"Recent research by the Hudson Rock Threat Intelligence Team reveals this self-sustaining cycle transforms victims into unwitting accomplices." https://lnkd.in/dQFQKbca

Big blog coming next week! 📰 sub for free at infostealers.com to get notified (you also get free individual Infostealer monitoring in case you ever get infected)

Based on Hudson Rock’s research - A new cybercrime tool called ErrTraffic allows threat actors to automate ClickFix attacks by generating 'fake glitches' on compromised websites Via BleepingComputer: https://lnkd.in/dqXQjNMA

Based on our recent research - A new cybercrime tool called ErrTraffic allows threat actors to automate ClickFix attacks by generating 'fake glitches' on compromised websites. https://lnkd.in/eCU3XG5r

Hudson Rock discovered that Infostealer creds are fueling the Clickfix epidemic by creating a continuous loop of admin creds via Infostealers data > high authority website takeover > Clickfix Infostealer delivery campaign > admin creds via Infostealers data.

lol WIRED publishing "The Worst Hacks of 2025" while they and their parent company, Condé Nast, still didn't get back to journalists or acknowledged the huge Wired + Condé Nast breach. (more about the breach - https://lnkd.in/dn-FEWhZ) This btw should not reflect on the great work of the journalist at Wired, etc. Not their fault at all ofc