Hackers sell the source code of Bkav products for $ 290,000 in XMR and promise to live stream the hacking process
In the previous few days, the Synthetic Teamese safety neighborhood has been troubled by the case that Bkav’s software program source code and a lot of the information of Bkav has been extensively distributed on the Internet by hackers.
In an commercial on an information trading discussion board on Aug. 4, an individual named “chunxong” stated he had “hacked the server and dumped the source code” of Bkav’s products, together with its software program, the Bkav Pro antivirus software program. Attached to the submit are screenshots of some code snippets in the source code and present folders resembling AntiAdware, AntiLeak, BkavAutoClean, Bkav GUI …
At that point, the information gross sales price was not printed. Interested events are requested to contact us by electronic mail. Chunxong additionally repeatedly posted screenshots, presumably together with inner firm paperwork.
Hackers sell Bkav source code information on a discussion board.
Bkav confirms that the above information is the source code. On the morning of August sixth, a consultant of this safety firm stated that “this is the old source code of some component modules of the Bkav software” and clients should not affected.
The leak, as defined by Bkav, was made by a former worker who was retired and had been happening for greater than a 12 months. “The authorities are still investigating, so they will not comment,” added the Bkav consultant.
In addition, “during his working hours, this employee recorded the credentials of the internal chat network in addition to the old source code in order to take photos of the last internal chats,” says an organization consultant.
However, in his replies, Chunxong claimed that he “never worked for Bkav” and that this particular person’s information was “new data”. Chunxong’s objects for sale have attracted greater than 300 file sharing websites to date.
Request ransom in safety coin
On August tenth, Chunxong introduced the promoting price $ 290,000 (about 6.7 billion VND) for hacked information from Bkav. At the identical time, this account additionally requires trading Monero (XMR) – a safety coin to conceal identification.
“If you need to purchase information, please ship the appropriate XMR quantity to my pockets handle. After receiving the cash, I’ll ship the source code and documentation. With so many individuals asking the price out of curiosity, I’ll solely trade if I get XMR first, ”the Chunxong account wrote.
If you solely need to personal this information, the purchaser will even have to pay twice as a lot, approx. $ 600,000, equal to 13 billion VND.
“Chunxong” introduced in the hacker discussion board that he “will stream the hacking live into Bkav’s internal network next week”.
“I can be streaming hacking live on Bkav’s inner community. Everyone, wait and see, “Chunxong introduced in a submit on the Raidforums discussion board on the afternoon of August eleventh. In a collection of subsequent posts, this particular person stated he would do that livestream on August 18th, however didn’t surrender which platform it will be broadcast.
To the considerations of another members about “if Bkav is going to shut down the server so as not to be attacked at this time, if you know the schedule in advance,” Chunxong replied “it’s a challenge” and “to see if the company makes up.” Worry a few single hacker. “
Chunxong stated he’ll live stream the hacking process on Bkav’s inner community.
To show its effectivity, Chunxong provided to sell “Socks Proxy” – a protocol for connecting to Bkav’s community system – for USD 30,000 (VND 680 million) in addition to the beforehand offered source code packages.
Chi Tran, a US safety professional, stated Chunxong’s habits confirmed that he was pretty assured about the vulnerabilities discovered. “If these flaws are actual, Bkav most likely hasn’t discovered them but. The finest means to take care of this menace is to be vigilant and monitor every little thing as intently as doable, “he stated.
Bkav doesn’t presently have any suggestions on this Chunxong prepare.
Source: T / L
Follow the Youtube Channel | Subscribe to telegram channel | Follow the Facebook page