{"id":25231,"date":"2024-09-23T06:10:06","date_gmt":"2024-09-23T14:10:06","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2024\/09\/23\/news-18961\/"},"modified":"2024-09-23T06:10:06","modified_gmt":"2024-09-23T14:10:06","slug":"news-18961","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2024\/09\/23\/news-18961\/","title":{"rendered":"SpaceX, CNN, and The White House internal data allegedly published online. Is it real?"},"content":{"rendered":"\n
A cybercriminal has released internal data online that they say has come from leaks at several high-profile sources, including SpaceX, CNN, and the White House.<\/p>\n
However, there are some questions around the reliability and usefulness of the released data, so we took a closer look. <\/p>\n
When it comes to the the SpaceX data set, the poster is apparently not a big fan of Elon Musk.<\/p>\nBreachForums post about SpaceX data<\/em><\/figcaption><\/figure>\n
Their post on data leak site BreachForums says:<\/p>\n
\n
\u201cToday I present data from Spacex, because F*** you elon musk, thats why LOL<\/p>\n
The leak contains, Emails, Hashes, Numbers, Hosts, IP’s\u201d<\/p>\n<\/blockquote>\n
But looking at the data we spotted some strange looking entries.<\/p>\n
For example, by searching for Elon\u2019s email address we found all these:<\/p>\nNow I still don\u2019t know where to send the pitch for my brilliant Mars colonization idea.<\/em><\/figcaption><\/figure>\n
SpaceX has not acknowledged this data breach, and it doesn\u2019t seem likely that it will.<\/p>\n
Moving on to the White House data set, we also found something that looked odd while looking at the email addresses. A lot of them seem to be composed of German words followed by the @whitehouse.gov domain name.<\/p>\nPotentially fabricated whitehouse.gov email addresses<\/figcaption><\/figure>\n
Again, the breach claim has not been acknowledged, nor do we expect it to be.<\/p>\n
The same poster claims to have breached another company, Up North Pride, by impersonating a police officer:<\/p>\n
\n
\u201cI sent them a fake data request from a law enforcement email, and they handed over what they had and this is what they handed over\u201d<\/p>\n<\/blockquote>\n
In this case, looking at the data, the email addresses of the partnering organizations at least look real.<\/p>\n
The motive of the cybercriminal for posting the way they did is unclear. Many of these posters are just looking for attention, potentially hoping to sell some of the data by getting their name out there. Or they are trying to annoy some of the people they don\u2019t like.<\/p>\n
For now, we wait and see, but it’s probably not worth giving it the time of day.<\/p>\n
![\"BreachForums](\"https:\/\/www.malwarebytes.com\/wp-content\/uploads\/sites\/2\/2024\/09\/BF_SpaceX.png\")
![\"collection](\"https:\/\/www.malwarebytes.com\/wp-content\/uploads\/sites\/2\/2024\/09\/elonsmailboxes.png\")
![\"fabricated](\"https:\/\/www.malwarebytes.com\/wp-content\/uploads\/sites\/2\/2024\/09\/german_words.png\")