Access to UK Accounting System for Sale: 600 Clients and 1TB of Data at Risk

Pietro Melillo : 8 July 2024 13:08

A malicious actor is allegedly selling access to an RDWeb system in the United Kingdom, belonging to an accounting firm. This breach represents a serious threat to the security of sensitive data for over 600 clients, containing tax return files and other confidential documents.

Offer Details

The ad posted on an online forum details access to the compromised system:

• System: RDWeb
• Location: United Kingdom
• Industry: Accounting
• User Rights: Full
• Local Network: Present
• Domain Computers: 57
• Total Data: 1TB

The advertiser claims that the files contain tax return documents and other related documents for over 600 clients. It is specified that there are many other unverified files, suggesting the possible presence of additional sensitive data.

Access Price

Supporta RHC acquistando il Corso CTI:

Supporta RHC attraverso:

• L'acquisto del fumetto sul Cybersecurity Awareness
• Seguendo RHC su WhatsApp
• Seguendo RHC su Telegram
• Scarica gratuitamente "Dark Mirror", il report sul ransomware di Dark Lab

Access to the RDWeb system is being sold under the following financial terms:

• Starting Price: $9,000
• Increment: $500
• Blitz Price: $10,000

Breach Veracity

At present, we cannot precisely confirm the veracity of the breach. The affected organization has not yet released any official press statement on their website regarding the incident. Therefore, this article should be considered an ‘intelligence source’ and not a definitive confirmation of the incident.

Implications and Recommendations

If confirmed, this breach could have severe consequences for the privacy and security of the involved clients’ data. Malicious actors could use this information for various fraudulent activities, including identity theft and financial fraud.

Companies, especially those handling sensitive data such as tax returns, must implement robust security measures to protect their systems. This includes the use of advanced firewalls, up-to-date antivirus software, data encryption, and continuous staff training on best cybersecurity practices.

Conclusion

This potential sale of access to an RDWeb system of a UK accounting firm underscores the critical importance of cybersecurity. Organizations must remain vigilant and proactive in protecting customer data to prevent similar incidents and safeguard their reputation and customer trust.

As is our custom, we always leave room for a statement from the company should they wish to provide us with updates on the matter. We will be happy to publish such information with a specific article highlighting the issue.

RHC will monitor the development of the case to publish further news on the blog, should there be substantial updates. If there are individuals informed about the facts who would like to provide information anonymously, they can use the encrypted whistleblower email.

Pietro Melillo
Head of the Dark Lab group. A Computer Engineer specialised in Cyber Security with a deep passion for Hacking and technology, currently CISO of WURTH Italia, he was responsible for Cyber Threat Intelligence & Dark Web analysis services at IBM, carries out research and teaching activities on Cyber Threat Intelligence topics at the University of Sannio, as a Ph.D, author of scientific papers and development of tools to support cybersecurity activities. Leads the CTI Team "RHC DarkLab"