According to a post from a dark web forum, a threat actor is selling access for a South American company operating in 3 different sectors. The organization operates in banking, they have a delivery app and a payment app. No organization name is mentioned in the post and the the threat actor stated that PoF and some type of reputation on any forum is needed in order to learn the name of the company.
The threat actor states that the access they are selling originates from the recent developments with the Snowflake product.
According to the threat actor, the access leads to more than a billion rows of data and includes a picture for the claim. The threat actor states that there are many tables like the one uploaded to the forum. For the alleged access, the threat actor is only accepting payments via XMR, and for those interested, a Keybase handle is included in the forum post.
