“We want to announce that we have now gained full entry to Resecurity programs,” the menace actors reportedly mentioned in a Telegram submit. “For months, REsecurity has been attempting to social engineer us and teams we all know. When ShinyHunters put the Vietnam monetary system database up on the market, their employees pretended to be consumers to get free samples and extra information from us.”
As proof, the menace actors had connected screenshots of Resecurity workers’ inner communication in a Mattermost collaboration occasion.
What Resecurity says actually occurred
In line with Resecurity, its security groups noticed reconnaissance exercise concentrating on externally uncovered providers earlier than the attackers made their claims public. In response, the corporate mentioned it steered the exercise towards a honeypot setting populated with artificial knowledge designed to resemble inner programs.
The honeypot included fabricated client data and simulated cost knowledge structured to seem real looking whereas remaining totally remoted from Resecurity’s manufacturing setting. The corporate mentioned this allowed the attackers to imagine that they had gained significant entry, whereas enabling defenders to observe exercise with out exposing actual knowledge.
