The American business consulting firm Frost & Sullivan suffered a data breach from an unsecured backup folder that was exposed on the Internet and was sold on a hacker forum.
Frost & Sullivan is a business consulting firm that helps companies develop strategy in Market Research and corporate training. With 40 companies worldwide and more than 1.800 employees, Frost & Sullivan is a well-known consulting firm.
On Monday, a threat actor known as ‘KelvinSecurity Team’ (aka KelvinSecTeam) attempted to sell company databases on a hacker forum, the dump includes data belonging employees and customers.
KelvinSecurity states that they are ‘Business Intelligence Contractors‘, but a report by InfoArmor describes them as a group known for less legal activities. In the forum post, the group states that the data being sold includes 6,000 customer records and 6,146 records for companies.
In an interview with Beenu Arora, CEO of Cybersecurity Cyble, BleepingComputer was informed that the data breach was caused by an unsafe backup folder containing databases and company documents.
“The breach occurred in an incorrect backup folder on one of Frost and Sullivan’s public servers. The folder contained files employees and customers, along with other confidential information, ”Arora told BleepingComputer.com.
Their database of customers contained information such as customer names, email addresses and other non-sensitive data.
On the other hand, the exposed employee database had more sensitive information, such as names and surnames, usernames, email addresses and hashed passwords.
KelvinSecurity says she tried to contact Frost & Sullivan
“The purpose was not to take a database and sell it. We tried to get in touch with the company, but like many others, it does not meet our requirements, so we sell the database to shake up those in charge,”said KelvinSecurity Team.
KelvinSecurity claims that they have not sold the data and are hoping the Frost & Sullivan contact them “to solve and eliminate the sale attempt.”
BleepingComputer has contacted Frost & Sullivan with questions about this data breach but has not received a reply as of now.