In a post on a dark web forum, a threat actor claimed to be selling full network access to a prominent telecommunications company in the Arabian Gulf.
The post details the sale of access to a company in the information services and telecommunications sector. According to the threat actor, the access includes a wide range of critical infrastructure, including C2 (Command and Control), shell, cloud systems, VPN, and more. The threat actor further claims to possess full control over all network forests, administrative domains, and enterprise-level administrator privileges.
Adding to the gravity of the situation, the post indicates that the compromised network extends across branches in three Middle Eastern countries, significantly broadening the risk and potential exposure. The attacker has offered to negotiate the price and insists on using escrow services during the transaction.
