A major Washington, D.C.-based real estate development and property management firm, WC Smith, has allegedly fallen victim to a significant data breach. A threat actor has posted an advertisement on a cybercrime forum claiming to be selling sensitive data belonging to the company. WC Smith has been a prominent player in the capital’s real estate market for over five decades, focusing on creating and managing residential communities and is known for its long-standing commitment to developing neighborhoods throughout the region.
The cybercriminal claims to have exfiltrated a massive trove of data, totaling over 1.3 Terabytes. The actor provided a screenshot of the directory structure as proof of the breach, which indicates the compromised information is extensive and could impact the company’s operations and its clients. The company itself has not yet made a public statement regarding the alleged incident.
The data being offered for sale allegedly includes a wide range of corporate files. Based on the folder names shared by the threat actor, the compromised data appears to contain critical company information. The specific data sets listed for sale include:
- DBSage (35.9GB)
- SharedDisk2 (3.7GB)
- SQL_Backup (35.7GB)
- wcs-fs1 (801.4GB)
- wcscfs1 (424.0GB)
