As part of Operation #LeakTheAnalyst, hackers allegedly hacked into F5 Networks and released customer data.
The hacker group 31337 appears to be back again after almost five years of silence. In 2017, she launched the #LeakTheAnalyst operation, during which she stole and published data from information security companies. The most notorious leak of #LeakTheAnalyst is the publication of personal information and working documents of the senior analyst of Mandiant (a division of FireEye) Adi Peretz (Adi Peretz).
On January 17, 2022, the first message from a new registered user appeared on Pastebin and the Raid forum , saying: “Finally on Monday, the LeakTheAnalys 31337 hackers will be back again after five years. Wait for new hacks … “.
The post included links to a YouTube video of the group’s activities (now removed), a Wikipedia article about the group (now removed), and a long-standing FireEye leak. In addition, the hackers asked subscribers to vote which information security company would be their next victim.
Probably, the revived 31337 really kept its word. On January 31, a message appeared on the DarkTracer: DarkWeb Criminal Intelligence Twitter page that hackers had hacked into a certain information security company and published its data. In particular, the leak allegedly contains documents from the company’s clients from the UK military sector.
Although DarkTracer: DarkWeb Criminal Intelligence does not reveal the name of the potentially affected company, and its name is blurred in the published screenshot, judging by the tweets “ walking” on Twitter, it is about F5 Networks.
According to a Twitter user under the pseudonym Totale Realname, the data published by the group is of little value. The leak provides information regarding the company’s LDAP infrastructure, including some usernames.
“No hashed or clear passwords, no SMB files, no personally identifiable user information. Didn’t live up to expectations,” said Totale Realname.