According to Austin Larsen, a senior security expert at Google, this hacker is targeting American businesses and attacking critical infrastructure organizations in Russia and Bangladesh. Meanwhile, victims in the US work in sectors such as healthcare , technology, and telecommunications.

Bloomberg noted that the fact that such a dangerous hacker could evade lawmakers highlights the challenges that cross-border cybercrime poses to law enforcement, thanks to anonymous communication services and the booming market for stolen identities.

zihrj2ap.png
Cross-border cybercrime remains a challenge for law enforcement agencies worldwide. Photo: Bloomberg

Larsen said that analysis of the hacker's online interactions suggests it may be a man in his 20s living in Canada. He declined to name the hacker.

Recently, he shared screenshots of files stolen from critical infrastructure companies in Russia and Bangladesh, including sensitive customer data. Some breaches are still ongoing.

The attacker gained access to the victim's organization by logging into internet login portals or services, using passwords purchased on the dark web.

Hackers can collaborate with others, possessing vast amounts of stolen information—at least hundreds of thousands from numerous organizations worldwide . Once inside, they steal data and profit from their victims.

In June and July, companies, including carrier AT&T, revealed they were victims of a hacking campaign in which hackers stole data from approximately 1 million people.

The campaign occurred after hackers breached a misconfigured Snowflake system to access sensitive data.

A Google expert pointed out that hackers are no longer targeting data related to Snowflake but are exploiting tools from a different software vendor. Larsen presented his findings at the LABScon networking conference in Arizona.

(According to Bloomberg)