From www.databreaches.net. Posted by Dissent at 2:54 pm Breach Incidents, Business Sector, Hack, Non-U.S., Of Note
05 Dec 2018
When TheDarkOverlord hacked Channel Ship Services, they not only acquired personal data that could be misused for fraud, but they claim they also acquired information that can jeopardize maritime security.
According to Jersey-based Channel Ship Services’ website, CSS Limited provides highly qualified permanent and contract specialist personnel to the global offshore industry. These personnel have recently had some of their personal data hacked by the hacker(s) known as TheDarkOverlord (TDO).
As anyone who has followed TheDarkOverlord’s criminal activities for the last 2+ years knows, TDO does not take kindly to having their “requests” ignored or refused. From the fact that this site is reporting on the breach, one can infer that CSS did not cooperate with TDO.
TDO did not provide DataBreaches.net with copies of any of the communications between them and CSS, so DataBreaches.net does not know the amount of any request TDO may have made, although a tweet on November 18 from TDO’s currently-suspended Twitter account suggested that a monetary request had, indeed, been made:
Although copies of communications were not provided to DataBreaches.net, TDO did provide this site with a small sample of the files they had acquired. Those files included seafarer agreements and contracts that would specify the contractor’s name, their passport number (in some cases), the wage rate that they would be paid, and other contractual provisions.
Other data acquired by TDO and provided to this site included a spreadsheet with client information, including the company name, and the name, email address, position, and telephone number of the contact person at the client’s company. While the data by themselves do not appear sensitive, it would certainly be useful information for anyone trying to socially engineer information or to set up a business email compromise or phishing attack.