14 DAY TRIAL // The cybercriminal group that hacked Adobe and several major US data brokers has also breached the systems of numerous other organizations. However, experts refused to name them since they might still be unaware of the incident.
Speaking to Kaspersky’s ThreatPost, Alex Holden of Hold Security LLC, the man who has helped Brian Krebs in investigating the Adobe source code leak and the data stolen from the data brokers, said the impacted organizations were being notified.
However, he will not name them since they might still be vulnerable to cyberattacks.
Holden also revealed that the cybercriminals were Russian speakers. He’s still unsure if they’re a criminal organization or if they’re sponsored by a nation state.
Adobe hasn’t determined if the attackers exploited a ColdFusion vulnerability to breach its systems, but it confirmed that they had gained access through out-of-date software. Holden says this particular gang has been using ColdFusion exploits since the beginning of the year, possibly even earlier.
Interestingly, the server on which Krebs and Holden found the stolen data is still being used. The cybercriminals are still putting their loot on it.