A threat actor known as USDoD claims to be selling unauthorized access to the web portal of a company based in China/Taiwan, which reportedly has a revenue of $7 billion.
According to the threat actor, the access is at the employee level and appears to belong to a former employee. The threat actor states that this access has been maintained for over two months without interruption.
The threat actor further elaborates that buyers will be able to edit and obtain certificates, as well as possibly access emails from other employees. They note that the access seems to be from an older employee who no longer works there but whose access remains active.
This alleged unauthorized access raises significant concerns about the security measures in place at the affected company and the potential for data breaches or other malicious activities.