Hacker sells access to Binance’s law enforcement request panel for $10 000 in cryptocurrency

An attacker posted an ad on the Breanch Forums forum

19.12.2023 - 13:35

273

2 min

What’s new? An unknown user claimed to have gained access to the Binance cryptocurrency exchange platform, which can be used by law enforcers from various countries to request sensitive customer information. He posted an ad on Breach Forums, where he offered to buy the service for $10 000 in bitcoins or Monero (XMR) by contacting him via Telegram or the Tox protocol. Anonymous claims it can send an unlimited number of requests, which the exchange will take three to seven days to process.

Breach Forums

What else is known? InfoStealers journalists citing a study by Hudson Rock, a cybersecurity and data protection company, reported that in 2023, three computers belonging to law enforcement officers from Taiwan, Uganda, and the Philippines were hacked during a global malware campaign, resulting in the theft of credentials stored in the browser and unauthorized access to the Binance login panel.

Hudson Rock researchers reported that the attackers confirmed the service’s functionality using the compromised account. The specialists reached out to the Binance team to share the results of the investigation.

The exchange launched the Law Enforcement Request System (LERS) to assist regulators and law enforcement in August 2022. Authorities can send requests to the platform to provide information about users for investigations. Each request is reviewed on a case-by-case basis, taking into account the user agreement and applicable laws.

Earlier, Immunefi analysts noted the increased interest of Lazarus hackers associated with the DPRK authorities in centralized projects. According to their report, the group conducted five successful attacks on crypto projects in 2023, earning $308,6 million or 17,6% of the total industry losses.

Author: