10 Infostealers Are Breaching Critical US Security Military and Even the FBI Hit

pA new report reveals how inexpensive cybercrime can compromise even the most secure organizations According to Hudson Rock employees at key US defence entities including the Pentagon major contractors like Lockheed Martin and Honeywell military branches and federal agencies like the FBI have fallen victim to Infostealer malware ppThese infections expose highly sensitive data sometimes for as little as 10 without the need for advanced hacking techniques due to the most persistent security weakness human errorppInfostealer doesnt rely on flashy exploits or brute force It plays the long game waiting for unsuspecting users to click on a malicious link or download something they shouldnt perhaps a game mod pirated software or a boobytrapped PDF Once triggered the malware settles in harvesting credentials session cookies and sensitive files without raising any suspicionppThe result Cybercriminals can now buy this stolen data for as little as 10 per infected computer on dark web marketplaces Need access to a military VPN Theres a log for that Curious about someones email inbox Easy Want to hijack a session and bypass twofactor authentication Consider it doneppAnd the scope According to Hudson Rocks report over 30 million computers worldwide have been hit with one in five holding corporate credentials For defence employees the consequences couldnt be more alarming Many of these individuals work on missioncritical projects involving advanced technologies like fighter jets nuclear submarines and AI systems Their compromised devices open the door to largescale data breaches and cyber espionage not just for their employers but for the national security of the country they are basedppThe report offers specific examples of the damage already done At Honeywell a major defence contractor nearly 400 employees were infected This breach exposed access to internal systems development tools and critically credentials for thirdparty partners like Microsoft and CiscoppThe US Navy is also affected with 30 personnel having their credentials stolen Leaked data includes access to email systems filesharing platforms and military training resources These credentials could allow attackers to move laterally through military networks accessing sensitive training platforms or even classified systemsppThis creates an opportunity for attackers to launch supply chain attacks The interconnected nature of global supply chains means a single weak link can lead to widespread damage as described by the ethical hacker duo last week when they discovered a vulnerability in a software supply chain firm that could have had farreaching consequences if it fell into the wrong handsppThese findings are not just limited to the United States The National Security of any country can be jeopardised if infostealers continue to breach critical infrastructure With infostealers like Redline Vidar and Formbook Fortune 500 companies to small subcontractors everyone is a potential targetppThomas Richards Director of Network and Red Team Practices at Black Duck puts it bluntly The latest report from Hudson Rock is incredibly concerning The stolen data could allow an adversary to infiltrate critical networks and compromise additional systems Immediate action including password resets and forensic investigations is essential to mitigate these risksppSo whats next Hudson Rocks report proves that cybersecurity is not just about firewalls and advanced technology it is also about the human element demanding a change in focus towards employee cybersecurity trainingppThe extremely low cost of these Infostealers makes it clear why law enforcement agencies worldwide are determined to shut down the dark web and clearnet cybercrime markets Nevertheless cybersecurity isnt a checkbox it is a mindset And if theres one thing this report makes clear it is that the time to act is nowpp
Email Address

pp
Name

pp

ppSuper secure VPNppMinimal data loggingppFavorable privacy policyppVisit IPVanishpp
The display of thirdparty trademarks and trade names on the site do not necessarily indicate any affiliation or endorsement of Hackreadcom If you click an affiliate link and buy a product or service we may be paid a fee by that merchant p