A threat actor has recently surfaced, claiming to be selling unauthorized access to the network of a major Irish retailer with an annual revenue exceeding $500 million. The access being sold is of the AnyConnect (AD) type, which potentially grants significant control over the retailer’s network infrastructure.
In their announcement, the threat actor set the price for this access at $800. They mentioned that additional details and verification of the access would be provided only to reputable users, old users, or those who have a deposit or premium status on their platform. This restricted sharing of information is presumably to ensure that the access is not widely exposed and to maintain a level of trust and security within their dealings.
The threat actor’s post indicates a concerning breach of security for the affected retailer, underscoring the persistent threats faced by companies in protecting their digital assets. This incident highlights the ongoing challenges in cybersecurity, particularly in the retail sector where vast amounts of sensitive customer and operational data are at risk.
