MrUnKnownRoot
Active Member
- Joined
- February 28, 2026
- Messages
- 93
- Reaction score
- 30
- Points
- 18
- Thread Author
- #1
️ National Oil Ethiopia PLC (NOC)There is four databases exfiltrated, with the main ERP database containing + 800Gb (500Gb of data
Clients, contracts, salaries, PII, emails, addresses etc, for both clients and the employees, as well as all the operations business data.
There wasn't a lot of vulnerabilities exploited, except for a basic exchange ProxyLogon. The rest is simply knowing where to look, knowing when to act, and most importantly, when not to act.
I really understood how dependent i was on C2 during this intrusion, where i decided to use none. A simple reverse shell obtained from Metasploit, and running Ligolo as a background process on one of the internal hosts was all that was needed, which made things so much faster and less heavier than usual.
Price: (Negotiable)
If you are a serious buyer, please contact us. We have already added samples to the post, but please do not ask for additional samples. If you come to our inbox to waste time and monitor us, we will block you immediately. Please contact us only if you are ready to purchase data with your money.
Telegram: Database Hacked
Qtox: F3C0D2BFACEBC5CC5A3005D0BF1BFDF43CBFF8F74C4D326EF9F9A27280D1777BABD55126B9EE
Session: 05b58ef0e61b6ccbdaf610df244eec2ea088c7ac0abb0a6cac9e7b4693a39b5557
Sample: Database Hacked
