IntelGroup, a prominent Serbian hacker from the CyberNiggers threat group, has claimed to breach Space-Eyes, a geospatial intelligence firm, catering exclusively to the US government agencies.
The breach, which has allegedly compromised the digital infrastructure of the Miami-based firm, stands to expose the US national security data.
IntelBroker claimed — through a message posted on BreachForums — that it took the threat actor only “10-15 minutes” to access sensitive data from Space-Eyes systems.
The government agencies Space-Eyes does business with include the Department of Justice, the Department of Homeland Security, various branches of the US Armed Forces, and crucial intelligence bodies including the National Geospatial-Intelligence Agency (NGA).
IntelBroker’s previous cyberattacks
IntelBroker has assumed a leading role in the CyberNiggers threat group because of successful cyberattacks in the past. The hacker specializes in initial access brokering, identifying and exploiting weaknesses in systems, and selling compromised access on the dark web.
Some prominent breaches attributed to IntelBroker include the General Electric data breach in Nov 2023, and the hack into Wee grocery services.
Regarding the Space-Eyes breach, InteBroker claimed the stolen data compromises “highly confidential documents about Space-Eyes’ services for national security within the US government.”
The stolen data, according to media reports, include full names, phone numbers, company names, job descriptions, email addresses, password hashes, and location data (coordinates and addresses) of several government officials.
IntelBroker had previously leaked national security data from a US federal contractor, Acuity Inc.
CyberNiggers gaining prominence
CyberNiggers has emerged as a formidable threat group within the revived Breach Forums, believed to have spun out of Raid Forums. It is a small group with all the members active in Breach Forums.
The threat group is currently reported to be pursuing critical targets and is reportedly under the surveillance of Five-eyes, the intelligence consortium consisting of Australia, Canada, New Zealand, the UK, and the US.
CyberNiggers is also associated with the breach targeting the Colonial Pipeline. “ComradBinski,” a group member, had reportedly offered premium access to Colonial Pipeline data that included such as billing details, private and public keys, passwords, emails, source code, PDFs, and database files. Along with IntelBroker, the group poses an imminent threat to organizations in the US, with a track record of orchestrating high-profile cyberattacks.