USDoD Hacker Claims Data Leak of 58,000+ Individuals from TransUnion

In a concerning development, a threat actor known as “USDoD” has been associated with high-profile security breaches in the past. It has claimed to have leaked sensitive data from TransUnion, a major American consumer credit reporting agency. This breach raises serious concerns about data security. Also highlights the ongoing challenges in safeguarding personal information in the digital age.

The TransUnion Data Leak

Researchers recently reported that “USDoD” announced the leak of highly sensitive data that was allegedly stolen from TransUnion. TransUnion, a leading consumer credit reporting agency, collects and aggregates personal information on over a billion individuals across the globe, making it a prime target for cybercriminals seeking to exploit valuable data.

The leaked database, totaling over 3GB in size, purportedly contains the personally identifiable information (PII) of approximately 58,505 individuals worldwide. It includes regions such as the Americas (North and South) and Europe. The data included in the leak is extensive and includes details like first and last names, internal TransUnion identifiers, passport information, date of birth, civil status, financial transaction summaries, credit scores, and information about loans and their remaining balances, among other data points.

This breach potentially exposes these individuals to identity theft, financial fraud, and other malicious activities that can have far-reaching consequences.

USDoD: A Familiar Threat Actor

The moniker “USDoD” is no stranger to the cybersecurity sector and has been linked to numerous high-profile security breaches in the past. This actor was even mentioned in an indictment related to the owner of the notorious cybercrime forum BreachForums, known as Pompompurin. USDoD’s track record suggests a significant level of expertise in carrying out cyberattacks and data breaches.

USDoD’s activities have extended beyond the TransUnion breach. In a recent incident involving the multinational aerospace corporation Airbus, USDoD claimed to have gained access to sensitive information on thousands of the company’s vendors. This breach exposed personal information such as names, job titles, addresses, email addresses, and phone numbers of 3,200 individuals associated with Airbus vendors.

Furthermore, the USDoD was involved in the hacking of the FBI’s InfraGard US Critical Infrastructure Intelligence portal in December 2022. Which resulted in the exposure of contact details of more than 80,000 high-profile private sector individuals. These incidents underscore the threat actor’s persistent and audacious cyber activities.

Unveiling Intrusion Techniques of USDoD

One notable aspect of the TransUnion data leak is the rare revelation of intrusion techniques by USDoD. The threat actor disclosed that they gained access to Airbus’s data by exploiting an “employee access from a Turkish Airline”. This unusual level of transparency suggests a certain level of audacity on the part of the hacker.

The victim’s computer was likely infected with the RedLine stealer after attempting to download a pirated version of the Microsoft .NET framework. This tactic highlights the multifaceted nature of cyberattacks, often involving social engineering and the exploitation of human vulnerabilities.

TransUnion’s Response To USDoD Attack

In response to the reported data leak, TransUnion issued a statement confirming that they had launched a thorough investigation with external cybersecurity and forensic experts. They asserted that there was no indication of a breach within their systems and that the data content and formats did not match TransUnion’s, indicating that the data may have come from a third party.

Data protection remains a top priority for TransUnion, and they are closely monitoring the situation.

For more news and updates on Cybersecurity, visit The Cybersecurity Club.


Post navigation

Leave a Reply

Your email address will not be published. Required fields are marked *

Cybersecurity Incident Halts DP World Australia Ports Operations

North Korean Hackers Target South Korean Shipbuilding Industry for Naval Secrets

Microsoft AI Researchers Accidentally Leaked 38 Terabytes of Private Data

EY Data Breach Exposes 30,000 Bank of America Customers