Korean Hackers (John Wick): A threat group identifying themselves as the “Korean Hackers” or “John Wick” has claimed to have breached the Indian video on demand company ZEE5 and warns that they are going to sell the stolen data. ZEE5 is owned by Essel Group, which is a conglomerate that owns various media outlets and TV channels. Researchers at Quickcyber have revealed details about a data breach that affected ZEE5. The threat actor sent email warnings to Essel Group entities and employees of ZEE5 claiming the breach and threatening to expose the data “soon,” but did not give a date or deadline for a response. The threat group claims to be security researchers from Korea that find bugs and report them to companies. If the company does not respond, the threat actor will threaten to sell the stolen data. The group stated that they have “hacked over 50 big websites but have never sold anything before.” It is unclear if the threat actor has not sold anything because the companies they have targeted responded to their threats, or if the group’s claims about the amount for companies they have targeted before is false. Typically, the threat actor requests a “donation” for their help in identifying the bug and according to them, they are talking to ZEE5 about a demand for 10 Etherum (approximately $2400 USD) to not leak the data. Screenshots from the breach have been uploaded to a repository on Bitbucket as proof of what the threat actor gained access to. The uploaded data shows other entities such as Dish Television, but it is unclear if data from these entities is included in the information that was stolen.
Watch the Video
How does Binary Defense help protect your organization? With best in breed cybersecurity tactics, techniques, and services, we make sure that your environment is secure against the most advanced attacks.