Brain Chiper claims computer attack on Deloitte. 1 Tera Byte of data

Luca Stivali : 4 December 2024 21:17

At 14:35 today, the claim of a cyber attack on the consulting giant Deloitte was detected on BrainChiper’s Data Leak Site. A countdown is active, marking the time for the publication of the data, which according to the cybercriminals will take place in 10 days and 20 hours.

At present, we cannot confirm the authenticity of the news, as the organisation has not yet published an official statement on its website about the incident. The information reported comes from public sources accessible on underground sites, so it should be interpreted as a source of intelligence and not as definitive confirmation.

The post on Brian Cipher’s Underground site

The Cybergang in the post on their underground site writes: ‘Unfortunately, giant companies do not always do their job well.’.

Prova Gratuitamente Business Log! L'Adaptive SOC italiano

Proteggi la tua azienda e ottimizza il tuo lavoro grazie al SOC di Business Log, il software leader per audit, log management e cybersicurezza realizzato in Italia. Business Log garantisce:

Conformità a NIS2, GDPR e ISO 27001

Analisi avanzata e prevenzione del dossieraggio

Semplice da installare, potente da usare

Scarica ora la versione di prova gratuita per 30 giorni e scopri come Business Log può rivoluzionare la tua gestione dei log e la sicurezza IT!

Again, reading the post, the CyberGang writes how ‘the fundamentals of computer security were not respected’, as if to perhaps demonstrate the ease with which they conducted the attack. They also state ‘we will show the great work, or maybe not, of monitoring’ and ‘we will explain what tools we have used and are using today’ . Perhaps it can be inferred that we still have persistence in Deloitte UK’s networks?

Quite unexpectedly, probably because of the size and popularity of Deloitte, they add from BrainChiper that they will soon ‘talk’ about this incident. Finally, and very worryingly, BrainChiper claims to be in possession of 1 TeraByte of exfiltrated data from Deloitte UK.

Red Hot Cyber’s DarkLab team has attempted to contact BrainChiper to ask if they would like to give an interview, we will keep you updated.

About the Threat Actors

BrainCipher is a relatively new actor on the scene. They distinguished themselves through an attack on Indonesia’s National Data Centre in June this year (an attack confirmed by the Indonesian government), disrupting the operations of more than 200 government agencies. For this attack, $8 million in Monero cryptocurrency was demanded.

An analysis of the recent victims does not reveal any ‘attachments’ to any one type of victim, but rather: companies, institutional entities, etc.

As is our custom, we always leave room for a statement from the company should they wish to give us an update on the matter. We will be happy to publish this information with a specific article highlighting the matter.

RHC will monitor the development of the matter in order to publish further news on the blog if there is substantial news. If there are persons with knowledge of the facts who would like to provide information anonymously, they can use the encrypted whistleblower mail.

Luca Stivali
Cyber Security Enthusiast and entrepreneur in the IT industry for 25 years, expert in network design and management of complex IT systems. Passion for a proactive approach to cyber security: understanding how and what to protect yourself from is crucial.