ShinyHunters have announced that they’ve been targeted by the FBI recently. The FBI worked in conjunction with ICANN (Internet Corporation for Assigned Names and Numbers) to seize the organization’s domain names and assets.
Technically speaking, ShinyHunters isn’t listed as a ransomware organization. Practically, it operates similarly to one. The hackers usually target high-profile organizations and steal data for their own gains.
Some of the most notable victims include:
To be noted, not all of ShinyHunters’ hits have been confirmed. The gang is known to often boast with unconfirmed breaches to increase their reputation and fear factor. There are numerous unconfirmed operations to this day.
ShinyHunters appears to be financially motivated, selling much of the stolen data on hacking forums. In other cases, the hackers keep some of the data for later use.
According to the latest reports, the FBI managed to arrest the organization’s administrator, Baphomet. This allowed the feds to gain access to the organization’s database, ultimately leading to the seizure of all the gang’s domain names.
ShinyHunters admitted to the facts in their public post, while mocking the FBI and NiceNIC for mismanaging the situation. According to the hackers, they managed to trick NiceNIC into pointing the DNS to their own servers.
This allowed BreachForums to replace the seizure banners with a link to the organization’s own Telegram group. So, despite the FBI’s efforts, ShinyHunters is apparently still in the game.
This is concerning, given the group’s influence, resourcefulness, and capabilities. With the administrator out of the picture, it’s expected that the gang’s activity will slow down for a while. But it’s also expected that they will be back in business shortly.
Unless, of course, the FBI decides to ramp things up and open up a new operation. This seems more likely to be the case, given that the FBI is constantly targeting cybercriminal actors. Some of them multiple times over short periods of time.
We’ll monitor the situation.
We believe security online security matters and its our mission to make it a safer place.