Exclusive: USMC and US DOD Personnel Data Reportedly Listed by Threat Actor
The United States Marine Corps (USMC) has reportedly been breached by a threat actor who claims to have the data of more than 13,000 members.
In a post on a popular hacking forum, the threat actor “Natohub” stated that he had two files containing 2,435 and 10,878 users respectively.
Although the threat actor provided little information about the nature of the incident, he did provide sample data.
Based on the samples, the data includes full names, email addresses, ranks, branches, unit codes, dates of birth, time zones and much more.
Cyber Daily’s analysis of the data suggests that some of the documents relate to legitimate current and former USMC personnel. However, Cyber Daily has not been able to verify whether all the data is real or not.
Cyber Daily contacted the USMC, which said it was looking into the allegations. The legitimacy of the incident still needs to be verified.
Natohub is infamous for data leaks belonging to NATO and its members.
Last month, the threat actor also documented a “U.S. military data breach,” which allegedly contained the data of more than 385,000 military personnel and contractors from the Army, Navy, Marine Corps, the United States Air Force and Coast Guard.
The data would have included “EDIPI, name, email, phone, department, component, primary MOS, MOS ticket, ticket description, unit information, company, platoon, duty section, mailing address, city/state/ zip code,” according to the threat actor. .
Again, a sample of the data has been released; however, Cyber Daily was unable to verify any of the names listed.
It is unclear whether these two leaks are related or not; however, the wider leak has been put up for sale.
In July, the threat actor documented another leak from the US Army, Navy, Air Force and Coast Guard, and in August, another leak from the USMC.
The threat actor also listed and allegedly sold NATO databases, EU databases, etc.