Members of Team GhostShell recently published data stolen from organizations ranging from the Pentagon to NASA.
"In #ProjectWhiteFox, what the team says will be their last project for the year, the hackers appear to have targeted and stolen database records from companies and organizations including NASA, Bigelow Aerospace, Aerospace Suppliers, World Airport Transfers, the Credit Union National Association (CUNA) and a defense contractor for the Pentagon," writes ZDNet's Charlie Osborne. "The team claims that the latest campaign has resulted in the leak of 1.6 million accounts and records from different industry players."
"The divulged data appears to be a dump of names, passwords -- some hashed, some plain text -- resumes, admin logins, phone numbers and e-mail addresses, among other bits of information," writes Threatpost's Christopher Brook.
"Along with massive links to data dumps on Pastebin, the group claims to have emailed ICS-CERT Security Operations Center, Homeland Security Information Network, FBI in Washington and Seattle, NASA at Langley and others warning about 'another 150 vulnerable servers from the Pentagon, NASA, DHS, Federal Reserve, Intelligence firms, L-3 CyberSecurity, JAXA, etc. consider it an early Christmas present from us,'" writes Computerworld's Darlene Storm.
"Earlier efforts by Team Ghostshell have included the release of 50,000 user accounts stolen from a jobs board that focuses on Wall Street, and the release of 120,000 records from 100 of the world's top universities, including Harvard and Oxford," writes InformationWeek's Mathew J. Schwartz. "Last month, meanwhile, after 'declaring war on Russia's cyberspace' as part of what it dubbed Project BlackStar, the group claimed to have leaked 2.5 million records and accounts related to a number of Russian government, law enforcement, and business organizations."