Brinztech Alert: Database of Hasber Courier is on Sale

Dark Web News Analysis

A threat actor on a known cybercrime forum is claiming to sell a massive collection of data that they allege was stolen from Hasber Courier. According to the seller’s post, the compromised data totals over 30 GB, consisting of a 20.5 GB database and 9.7 GB of document images. The data purportedly includes sensitive Personally Identifiable Information (PII) of the courier’s clients, which are said to include major companies like the bank BBVA and the telecommunications provider Movistar. The entire package is being offered for $10,000.

This claim, if true, represents a catastrophic supply chain attack. A breach at a courier or logistics company that handles the data of multiple major corporations is a worst-case scenario. The leaked information provides a powerful toolkit for criminals to launch highly sophisticated and convincing secondary attacks against the clients of the breached company and their respective customers. The alleged inclusion of document images alongside database records makes the threat of high-fidelity identity theft and fraud extremely severe.

Key Cybersecurity Insights

This alleged data breach presents a critical and widespread supply chain threat:

• A Catastrophic Supply Chain Attack: The primary and most severe risk is the exposure of data belonging to Hasber Courier’s high-profile clients. This is a classic supply chain attack, where the compromise of one vendor provides a direct path for attackers to target a multitude of other, larger organizations like BBVA and Movistar.
• High Risk of High-Fidelity Identity Theft: The alleged inclusion of document images alongside PII is a critical concern. This allows criminals to commit the most convincing forms of identity theft, as they possess not just the data but the visual proof needed to bypass many Know-Your-Customer (KYC) and identity verification checks.
• A Goldmine for Sophisticated, Multi-Stage Scams: With this data, criminals can launch incredibly convincing fraud campaigns. For example, they could contact a Movistar customer about a real delivery that was handled by Hasber Courier, using that legitimate pretext to phish for account credentials or other sensitive information.

Mitigation Strategies

In response to a supply chain threat of this magnitude, all involved parties must take immediate action:

• Launch an Immediate Investigation and Full Partner Notification: The highest priority for Hasber Courier is to conduct an urgent, massive-scale forensic investigation to verify the claim. It is also their critical responsibility to proactively and transparently notify all of their clients (including BBVA and Movistar) about the potential breach so those companies can activate their own incident response plans.
• Activate Third-Party Risk Management for all Clients: Any company that uses Hasber Courier as a logistics partner should immediately activate its third-party risk management plan. They need to assume their customer data may have been compromised and be on high alert for targeted attacks.
• Issue a Public Alert and Enhance Fraud Monitoring: The named clients, like BBVA and Movistar, should prepare to issue a public alert to their own customers. Customers should be warned about the high risk of sophisticated phishing scams that may reference real deliveries or account details and advised to monitor their accounts for fraud.

Secure Your Organization with Brinztech As a cybersecurity provider, we can protect your business from the threats discussed here. Contact us to learn more about our services.

Questions or Feedback? For expert advice, use our ‘Ask an Analyst’ feature. Brinztech does not warrant the validity of external claims. For general inquiries or to report this post, please email us: contact@brinztech.com