Cybercriminal leaks data from 3,200 Airbus suppliers

On September 11, 2023, the cybercriminal known as USDoD leaked data from 3,200 Airbus suppliers on the hacking forum BreachForums. He explains using the RedLine infostealer to gain access to Airbus servers from a Turkish airline employee. The database contains the names, addresses, emails and telephone numbers of thousands of employees from sensitive corporations, often tied to the military.

The Hudson Rock cybersecurity firm detected the intrusion and informed Airbus. The aircraft manufacturer publicly confirmed the hack. “Our security services took immediate corrective and monitoring measures to prevent our systems from being compromised,” stated Airbus in a press release.

In his BreachForums post, USDoD also announced his next stunt would be to publish contact info for the “main US defense contractors”. Cybersecurity experts take this threat seriously: in late 2022 the cybercriminal made a name for himself by hacking into InfraGard, the FBI’s information-sharing network. He then attempted to sell the contact info of 80,000 employees at the federal agency.

The cybercriminal forum BreakForums, taken down by the FBI in June 2023, three months after its administrator’s arrest, has since migrated to a new domain, where it remains active.