In a recent post on a dark web forum, a threat actor alleged that they had breached the network of Caterpillar Inc., one of the world’s largest manufacturers of construction equipment. The post claims that the attackers had access to a vast array of sensitive data and are now leaking it online.
The threat actor announced that 80GB of confidential information, including project files, employee data, customer records, financial documents, and manufacturing designs for engines and machines, has been exposed. It is indicated that private correspondence and highly sensitive internal communications are part of the leaked material.
The post also claimed to have obtained the AD-Recon data for Caterpillar’s network, along with browser passwords.