Threat actors Sanggiero and IntelBroker have reportedly accessed and are now offering for sale the comprehensive database of Sugargoo, a prominent cross-border e-commerce platform known for its extensive services connecting China with global markets. Sugargoo’s multifaceted business model encompasses various facets of cross-border commerce, including procurement, warehousing, logistics, and marketing promotion, catering to individual consumers and small to medium-sized businesses worldwide.
The alleged breach, said to have been accomplished through the exploitation of critical vulnerabilities, has resulted in the compromise of a wide array of sensitive data fields, including member details, message content, and communication records. This breach not only poses significant privacy and security risks but also underscores the growing threat posed by cybercriminals targeting e-commerce platforms. The reported sale price for this illicitly obtained information is $50,000.