Yes Cellebrite hacked: In an unusual case where hackers become victims, an anonymous hacker breached a popular mobile hacking service known for providing surveillance and data mining solutions to government agencies.
Motherboard reports the attacker was able to obtain 900GB of data from Israeli company Cellebrite, including customer credentials, databases and technical data of company products.
Cellebrite has developed the Universal Forensic Extraction Device (UFED) το οποίο έχει την ικανότητα να λαμβάνει τα δεδομένα από ένα ευρύ φάσμα smartphones. Μόλις συνδεθεί, το UFED μπορεί να τραβήξει διάφορα δεδομένα, όπως μηνύματα SMS, τα μηνύματα ηλεκτρονικού post officeand call logs.
The Israeli company is supposed to supply government agencies in the United States and the authoritarian regimes of Russia, the United Arab Emirates and Turkey.
Motherboard has confirmed that the stolen data is indeed authentic. According to the publication, the information appears to have been retrieved by its customer department by clicking hereCellebrite's website, where users can access new software updates.
In addition to user passwords and databases, the breach allegedly includes logs from devices that Cellebrite "broke" as well as evidence files from confiscated mobile devices.
The company has since confirmed the breach on its website, and is advising its customers to change it code their:
"Cellebrite recently experienced unauthorized access to an external server. The company is conducting an investigation to determine the extent of the breach.
It is currently known that the leaked information includes basic user contact information that has been registered for notifications or notifications for Cellebrite products and hashed passwords for users that have not yet been transferred to the new system. To date, the company is not aware of any specific increased risk to its customers as a result of this event. However, my.Cellebrite account holders are encouraged to change their passwords as a precaution. "
In a similar case since last year, PhineasFisher hacker violated two surveillance services involved in providing hacking applications designed for espionage to unsuspecting citizens in various government agencies.
PhineasFisher then leaked stolen data online, while the Cellebrite invader allegedly takes a closer look, giving information only to the Motherboard and a few selected people in IRC chat rooms.