Fed hacked 33 Tb data leak/Lockbit (ROFLMO)

wellington · Monday at 19:23

and we are meant to trust them with a CBDC.

LockBit Ransomware Holds 33 TB of US Federal Reserve Data for Ransom

The infamous ransomware group LockBit 3.0 acknowledged that it has breached the Federal Reserve System, the central banking system of the United States of

www.techworm.net

0xDEADBEEF · Monday at 20:17

Fortunately they can print some XMR to pay the ransom....

All kidding aside, I do not expect them to be breached. But I guess time will tell, the worst possible entity you could hit with ransomware is the US Gov. The last thing a ransomware operator would do in this case is NOT doxxing and NOT sharing proof.

janet25 · Tuesday at 00:54

If you have Tor, here's the link to LockBit's official announcement:

http://lockbit3753ekiocyo5epmpy6klmejchjtzddoekjlnt6mu3qh4de2id.onion/post/7uTtXnLiP4aeqMqj6678851e3c73e

Martin Everson · Tuesday at 13:30

If true I am trying to understand what they want to achieve. Do they just want kudos? It cant be money as they claim as there are much softer targets than going after an entity with near unlimited resources to deal with you.

Sols · Tuesday at 13:38

Turn a casual evening of hacking with the boys into a drone strike on your house with this one simple trick.

tyrexoid · Tuesday at 15:46

why would the Fed website or database have any banking info of any Americans? this info is in the banks databases in their respective datacenters, isn't it? pls don't tell me this all is also on AWS or Azure cloud in addition to being in the DB of the Fed

just weird. How so much data can be concentrated in one location.

0xDEADBEEF · Tuesday at 18:27

Martin Everson said:
If true I am trying to understand what they want to achieve. Do they just want kudos? It cant be money as they claim as there are much softer targets than going after an entity with near unlimited resources to deal with you.

They want it known that LockBit is able to breach high-value targets. This in turn makes them interesting for other players in the ecosystem, thus recruiting more people for their Ransomware as a Service offering. If you are able to breach a network, just give the guys from LB a call and they will help you out type of deal.

tyrexoid said:
why would the Fed website or database have any banking info of any Americans? this info is in the banks databases in their respective datacenters, isn't it? pls don't tell me this all is also on AWS or Azure cloud in addition to being in the DB of the Fed just weird. How so much data can be concentrated in one location.

A lot of banking information is already in the cloud, most of it is hybrid. Legacy banking stuff is kept on-premise while new innovation is deployed on the cloud. Also most critical organizations got their own 'private' cloud within the hyperscalers and even dedicated physical connections to e.g. Microsoft datacenters from their own DCs.

Funnily enough, they pass every Privacy Impact Assessment.

aniglo22 · Tuesday at 22:37

They published it now .
The files are related to evolved banking .

Federal Reserve Board issues an enforcement action against Evolve Bancorp, Inc. and Evolve Bank & Trust for deficiencies in the bank’s anti-money laundering, risk management, and consumer compliance programs

The Federal Reserve Board on Friday issued an enforcement action against Evolve Bancorp, Inc. and Evolve Bank & Trust, both of West Memphis, Arkansas, for

www.federalreserve.gov

JackAlabama · Wednesday at 05:45

with a tinfoil hat on: things like that are needed to bring in the cbdc system and undermining trust of the old one.

Simon4466 · Wednesday at 12:17

Isn't evolve used by a ton of EMIs and MSBs?

tyrexoid · Wednesday at 12:56

Wise USD account, and Mercury use it, but don't know by which extent, possibly Mercury is a tech layer on top of Evolve bank. What it seems from the email signature "Mercury is a financial technology company, not a bank. Banking services provided by Choice Financial Group and Evolve Bank & Trust®; Members FDIC."
And Wise works with many banks so they'll easily switch if needed. The notice seems "make better security please!" than anything important though, "The Board is requiring the bank to improve its policies and programs in those areas, in addition to requiring other remedial improvements".
But does it mean Evolve bank is the ones whos customers go leaked or what?

but yeah actually could easily be a play towards CBDC rollouts in order to point out "remember those scary hacks? that's all in the past! since no one can hack the shiny new digital money, yay!" strategy?

janet25 · Wednesday at 14:13

It has been published.

Edit: removed onion link to the files because I don't want to get suicided by the US government.

wellington · Wednesday at 16:08

janet25 said:
It has been published.

Edit: removed onion link to the files because I don't want to get suicided by the US government.

View attachment 7173

View attachment 7172

I believe, once its in the public domain it's ok to publish.

What services were using : Bancorp?

Martin Everson · Wednesday at 18:32

@janet25 Thanks for removing links.

Please nobody publish any links on this site to such stolen data. Tread carefully here when it comes to US and its not open for discussion either.

JosephLL · Wednesday at 21:04

If I understand the leak comes from some other entities involved with FED that are keeping the data on cloud. Anybodz knows what kind of services are those ""Evolve Bancorp, Inc. and Evolve Bank & Trust" providing to FED?

tyrexoid · Thursday at 07:01

JosephLL said:
If I understand the leak comes from some other entities involved with FED that are keeping the data on cloud. Anybodz knows what kind of services are those ""Evolve Bancorp, Inc. and Evolve Bank & Trust" providing to FED?

Looks like they provide enough for an actual ACH pull by the hackers ns2

. Luckily I don't keep money in Mercury, but here's their email from 8 hours ago:

-----------
We recently became aware of a cybersecurity attack that breached the security systems of one of our partner banks, Evolve Bank & Trust, and leaked their records, including some account numbers, deposit balances, business owner names, and emails associated with Mercury and other fintech accounts.

Mercury account credentials — including passwords — were not exposed (we do not share this information).

While we do not anticipate an increased risk of exposed Evolve account numbers being used fraudulently, Mercury is taking the following preventative steps to keep your funds secure:

We have robust monitoring for suspicious ACH pulls. If you notice a fraudulent ACH pull initiated against you, please dispute the transaction as soon as possible. You can see recent ACH pulls here.
You can further enhance the security on your accounts by enabling the ACH authorizations feature, which will flag any ACH pulls from unauthorized vendors and give you a chance to decline them before they are processed.

...
----------------

Forester · Thursday at 13:47

tyrexoid said:
Looks like they provide enough for an actual ACH pull by the hackers . Luckily I don't keep money in Mercury, but here's their email from 8 hours ago:

-----------
We recently became aware of a cybersecurity attack that breached the security systems of one of our partner banks, Evolve Bank & Trust, and leaked their records, including some account numbers, deposit balances, business owner names, and emails associated with Mercury and other fintech accounts.

Mercury account credentials — including passwords — were not exposed (we do not share this information).

While we do not anticipate an increased risk of exposed Evolve account numbers being used fraudulently, Mercury is taking the following preventative steps to keep your funds secure:

We have robust monitoring for suspicious ACH pulls. If you notice a fraudulent ACH pull initiated against you, please dispute the transaction as soon as possible. You can see recent ACH pulls here.

You can further enhance the security on your accounts by enabling the ACH authorizations feature, which will flag any ACH pulls from unauthorized vendors and give you a chance to decline them before they are processed.

...
----------------

I can confirm that Airwallex, which also uses Evolve Bank & Trust, sent a similar e-mail to customers yesterday in the evening:
************
Important Information Regarding Evolve Bank & Trust Data Breach

We are writing to inform you of a cybersecurity incident involving Evolve Bank & Trust, one of several Airwallex banking partners in the U.S. It appears that a criminal organization targeted Evolve and leaked customer data, likely including Personal Identification Information (PII), on the dark web. The data varies by individual, but could include your name, Tax ID, date of birth, account information and/or other personal information.

At this point, we are unable to confirm whether Airwallex customer data was compromised. Evolve has confirmed that they have contained the situation and the bad actors are no longer in their system. However, we cannot independently assess the data and must work through Evolve and law enforcement to do so.

We are in contact with the Evolve team as they continue to investigate and analyze the situation. We will continue to share relevant updates as soon as we are able.

The security and safety of our customers’ data is of the utmost importance and we are increasing our monitoring of customer accounts connected to Evolve amid this situation.

We will be in touch as soon as we have more information to share any remediation actions that may be necessary. In the meantime, please notify us of any suspicious activity in your account and reach out to Airwallex customer service with any questions.
*****************

wellington · Thursday at 20:40

Binance already doxed us all anyway to Uncle Sam

wellington · 2024-06-29T02:20:18+0200

It appears wise was impacted

There’s been a data breach at Evolve Bank & Trust.

Evolve Bank & Trust is a regulated bank that we worked with from 2020 until 2023 to provide your old USD account details. They’ve recently been affected by a data breach and some of your personal information may have been involved.

This personal information does not include copies of any of the identification documents you’ve shared with us — these have not been shared with Evolve Bank & Trust at any point.

Your Wise account is safe

We no longer work with Evolve Bank & Trust, and have already strengthened our security measures. We’ve also started a thorough investigation into this data breach and can confirm that it has not impacted our systems. This means:

• your Wise account credentials, including your password, are safe, and you can use your account as normal

• you can continue to use your USD account details — these are no longer connected to Evolve Bank & Trust

• you can continue to use any Wise cards you may have as they were not impacted by this issue – your card number and PIN are safe

Our valued sponsor

Fed hacked 33 Tb data leak/Lockbit (ROFLMO)

wellington

LockBit Ransomware Holds 33 TB of US Federal Reserve Data for Ransom

0xDEADBEEF

janet25

Martin Everson

Offshore Retiree

Sols

tyrexoid

Active Member

0xDEADBEEF

aniglo22

Federal Reserve Board issues an enforcement action against Evolve Bancorp, Inc. and Evolve Bank & Trust for deficiencies in the bank’s anti-money laundering, risk management, and consumer compliance programs

JackAlabama

Simon4466

Active Member

tyrexoid

Active Member

janet25

wellington

Martin Everson

Offshore Retiree

JosephLL

Active Member

tyrexoid

Active Member

Forester

wellington

wellington

Forum Announcement

Latest Threads