The alleged hacker has reportedly gained access to the KodexGlobal platform used by law enforcement
An online hacker claims to have access to a “KodexGlobal” law enforcement request account that lets buyers subpoena user data from firms like Chainlink, Coinbase and Binance, among others.
A blog updated on February 4 by cybercrime solutions firm Hudson Rock reported the hacker is marketing access to the law enforcement account on BreachForums for prices of $300 or $5,000 per emergency data request (EDR).
New Blog Post:
Hacking of Google, TikTok, and Meta Law Enforcement Systems as a Result of Infostealer infectionshttps://t.co/PS2t0ZuNif
— Hudson Rock (@RockHudsonRock) January 31, 2024
The hacker claims they can make EDRs available for services, including Tinder, Binance, LinkedIn, Discord, Coinbase, SendGrid, Chainlink and various others. A Binance spokesperson recently explained that the blog’s conclusions don’t represent a Binance system breach.
“With a thorough documentation process in place and constant monitoring for any compromised accounts, we remain committed to safeguarding our user data against any form of unauthorized access,” said a Binance spokesperson.
The KodexGlobal platform is used for safe communications between regulators and law enforcement agencies. Hackers who access the platform could solicit personal data about a firm’s users by falsely declaring legal grounds for the request.
The system’s misuse could lead to identity theft, extortion, and monetary losses for users, particularly those owning crypto assets.
Hudson Rock believes the hacker “very likely” acquired access to law enforcement systems by manipulating credentials received from Infostealer Infections, which are often achieved through compromised law enforcement officer computers.
“Today, Hudson Rock researchers identified over 50 different sets of credentials for Google’s law enforcement system from various Infostealer infections,” revealed Hudson Rock.
The firm reported that a hacker attempted to sell access to Binance’s law enforcement in December 2023. KodexGlobal disregarded it as a “scam” at the time, although Binance reportedly verified they were knowledgeable of “such access.”
