Title: Gang Employs U-Haul Vans for Hacking and Doxing Victims
A notorious gang, referred to as Com, has been making headlines for utilizing illegally obtained data from hacked U-Haul employee accounts for nefarious purposes. According to a recent report from 404 Media, this group, known for a range of criminal activities such as hacking, burglary, and home invasion, targets individuals for doxing and hacking.
The gang uses compromised U-Haul employee accounts to gather data on potential victims, which is then employed in social engineering attacks. The data connected to users' U-Haul accounts can be manipulated to launch further assaults on more significant accounts like social media or ISP accounts.
404 Media uncovered this method after communicating with a cybercriminal who sells software for hijacking U-Haul employees' company accounts. A user named Pontifex, the administrator of a phishing tool called Suite, revealed that U-Haul possesses a wealth of information that is attractive to cybercriminals. Pontifex stated that the data is primarily used for doxing potential targets since it often contains information not found online.
404 Media's report also hints at a potential link between the series of hacking incidents plaguing U-Haul in recent years and the cybercriminal activities targeting employee accounts. In February 2022, the company experienced a data breach that affected 67,000 customers' information, and in an earlier occurrence, U-Haul was also hacked.
When contacted for comment, U-Haul did not respond to 404 Media's requests.
The emergence of Com suggests an intriguing trend: the increasing collaboration between digital criminals and traditional crime rings. A recent report highlighted the phenomenon of cryptocurrency hackers partnering with home invaders, who then victimize known crypto-owners.
Given the situation, U-Haul can take steps to protect user data from falling into the wrong hands. Enhancing cybersecurity measures, implementing data encryption, safeguarding employee credentials, and educating customers would be beneficial. Additionally, U-Haul could partner with cybersecurity experts to stay informed about current threats and best practices in data protection. By taking these actions, U-Haul can significantly decrease the likelihood of its user data being exploited for doxing and social engineering attacks.
The use of this illegal data by Com opens up possibilities for future technology-driven crimes. Given U-Haul's vast amount of user data, it becomes a prime target for tech-savvy criminals in the future.
