Jul 20, 2021 14:00:00

1TB of data stolen from Saudi Aramco, the world's largest producer of crude oil, for sale on the dark web

1TB of confidential information such as customer information and employee personal information has been stolen from

Saudi Aramco , the world's largest oil company with crude oil reserves, crude oil production, and crude oil exports, and sold on the dark web. I understand. The cybercriminal group that stole the data is soliciting buyers for Saudi Aramco's data at a price of $ 5 million.

Saudi Aramco data breach sees 1 TB stolen data for sale
https://www.bleepingcomputer.com/news/security/saudi-aramco-data-breach-sees-1-tb-stolen-data-for-sale/

On July 19, 2021, IT news site Bleeping Computer reported that a cybercriminal group called 'ZeroX' was selling 1TB of Saudi Aramco's proprietary data at a leak site on the Tor network.

Below is a screenshot of a post on a leak site that offers to buy Saudi Aramco data.

According to Bleeping Computer's interview, 'Zero X' explained that the data was stolen in 2020 using a

zero-day exploit. However, he did not disclose what kind of vulnerability was specifically used.

Saudi Aramco's data for sale includes personal information such as names, phone numbers, and facial photographs of 14,254 employees of the company, customer lists, and project specifications and design drawings related to construction and facilities. I will.

'Zero X' sells 1GB of sample data for 2000 dollars (about 200,000 yen) at

Monero , and the entire 1TB data is priced at 5 million dollars, and it will accept price negotiations. thing. In addition, it is said that it will cost 50 million dollars (about 5 billion yen) in the case of exclusive sale that erases the data in hand of 'ZeroX' at the same time as selling the data. According to Bleeping Computer, 'ZeroX' has already begun negotiations with five buyers.

Posting to a leak site that sells Saudi Aramco data had a deadline of '662 hours before negotiations and sales were decided.' 'ZeroX' tells Bleeping Computer that '662 hours is meaningful and it's a'puzzle'for Saudi Aramco,' but it's unclear what the specific intentions are.

A Saudi Aramco spokeswoman said in a statement to Bleeping Computer, 'This data incident is the work of a third-party contractor and will not affect our operations.'