Hackers Claim Robert Half Data Breach, Put Sensitive Data on Sale

Blackcat/ALPHV Ransomware Claims loanDepot and Prudential Financial Breaches
Table of Contents
    Add a header to begin generating the table of contents

    The notorious hackers, known as IntelBroker and Sanggiero, have announced that they possess a significant amount of data from Robert Half data breach and are offering it for sale at a price of $20,000 in Monero cryptocurrency.

    This comes after Robert Half International Inc. experienced a data breach in June 2022, where hackers targeted over 1,000 customers and obtained sensitive information such as names, addresses, social security numbers, and tax details.

    The IntelBroker and Sanggiero are claiming responsibility for the breach at Robert Half International, boasting about the successful theft of a substantial amount of data.

    The data stolen in the Robert Half data breach is currently being offered for sale on the notorious Breach Forums at a price of $20,000 in Monero cryptocurrency. The data listing first appeared on Thursday, February 8, 2024, and has remained active since then.

    The hackers claim to have breached RobertHalf.com on the same day, indicating that this is a separate incident from the previous breach in 2022. However, it is unclear whether these hackers are the same ones responsible for the earlier breach.

    Nonetheless, IntelBroker has a reputation for high-profile and credible hacks, including breaches of Weee! Grocery, General Electric, and the recent data leak involving a partial Facebook Marketplace database.

    IntelBroker Disclosed Stolen Data in the Robert Half Data Breach

    In their post on Breach Forums, IntelBroker disclosed that they managed to gain access to confidential records, employee documents, customer information, and configuration settings related to services such as OpenAI and Twilio.

    The hackers additionally shared screenshots purportedly displaying the stolen data, Git repositories, and AWS-related system settings. One screenshot appears to reveal a client list, with companies listed under ‘Account Names,’ accompanied by full names, primary functional roles, titles, and phone numbers.

    The exact extent of the breach and the number of individuals impacted are still unclear at this time.

    Related Posts