The hacker, known as IntelBroker and Sanggiero, claims to have a large amount of data from Robert Half that is being sold for $20,000 in the cryptocurrency Monero (XMR).
In June 2022, Robert Half International Inc., a global staffing and business consulting services provider, filed a data breach notification with the Maine Attorney General’s Office. According to the notice, the company experienced a data breach in which hackers successfully targeted more than 1,000 customers and obtained their names, addresses, social security numbers, and tax information.
Hackread.com can now confirm that individuals operating under the aliases IntelBroker and Sanggiero have claimed responsibility for another breach at Robert Half International. They once again claim to have successfully infiltrated the company and boast that a significant amount of data has been stolen.
The stolen data is currently being offered for sale in the Monero (XMR) cryptocurrency on the infamous breach forum for a price of $20,000. Notably, the data list he first appeared on Thursday, February 8, 2024, and has remained active ever since.
The hackers claim to have breached RobertHalf.com on the same day, indicating that this alleged data breach is separate from the previous data breach in 2022. However, it remains unclear whether these are the same hackers responsible for previous data breaches.
Nevertheless, IntelBroker is already known for high-profile and reliable hacks, such as the Weee! breach. The latest data breaches involve grocery stores, General Electric, and parts of Facebook Marketplace’s databases.
Suspicion of stolen data
Founded in 1948 and headquartered in Menlo Park, California, Robert Half International has established itself as the world’s first and largest professional talent solutions company. With more than 325 offices around the world, including Australia, Brazil, UAE, UK, Germany, Japan, China, and Canada, the company is a lucrative target for cybercriminals.
In a post on Breach Forums, IntelBroker disclosed that it gained access to sensitive records, employee documents, customer information, and configuration settings related to services such as OpenAI and Twilio.
The hackers also shared screenshots that purport to display stolen data, Git repositories, and AWS-related system configurations. One screenshot shows a list of customers, with company name listed under “Account Name,” along with full name, primary role, job title, and phone number.
The full extent of the breach and the number of individuals affected remain unknown. Hackread.com has reached out to Robert Half International Inc. for an official statement or clarification. This is a developing story, so the article will be updated accordingly.
Increase in data breaches
The first two months of 2024 have seen a notable increase in data breaches affecting both businesses and government agencies. Last week, Infosys disclosed a breach that affected more than 57,000 Bank of America customers.
Earlier this month, two major U.S. insurance companies, Washington National Insurance Company and Bankers Life and Casualty Company, reported SIM swap-related breaches that affected more than 66,000 customers.
In January, Jason’s Deli suffered a major data breach in which the personal information of over 344,000 users was exposed through a successful credential stuffing attack. Also in January, hackers targeted his ISP Hathway in India, compromising the personal information of more than 4 million unsuspecting customers and his KYC records.
Related article
- 23andMe holds users responsible for massive data breach
- AnyDesk prompts users to change passwords during security breach
- Data breach at defunct ambulance service affects 1 million people
- Cloudflare gets hacked after state agency takes advantage of Okta breach
- RingGo owner EasyPark suffers data breach and user data stolen