Alleged Leak of Italian Red Cross Database Detected
A new alleged data breach concerning the Italian Red Cross has been reported after a post surfaced on a hacker forum by a threat actor claiming to have accessed the organization's network. The hacker described the security measures as ineffective and detailed how they easily gained administrative privileges, exploiting several vulnerabilities to access critical data. The threat actor shared that they avoided deploying ransomware, considering it unnecessary, and instead focused on extracting and exposing internal source codes, databases, backups, and more. They bypassed large video files to avoid detection and network disruption. Additionally, the hacker claims to have left a hidden backdoor in the system, offering to share it privately for further exploitation. Proof of the breach was supported by five images showing excerpts of the stolen data, from a database management console, Microsoft SQL Management.