Cellebrite Data Breach – 1.7 TB of Data Stolen

A security breach occurred at Cellebrite, a company that provides digital forensics tools to law enforcement agencies worldwide. Reports indicate that a hacker has gained access to Cellebrite’s systems and has leaked the company’s software, along with a significant amount of sensitive customer data, online.

Cellebrite is a well-known provider of digital forensics tools, which law enforcement agencies and other organizations use to extract data from mobile devices and other digital devices. Police and other agencies widely use the company’s tools to investigate crimes, including terrorism, drug trafficking, and human trafficking.

The hacker, who goes by the name “Hash_Brazil”, claimed to have stolen 900GB of data from Cellebrite, including the company’s software, customer data, and other proprietary information. The stolen data was then leaked online on a popular hacking forum. The hacker also stated they had access to Cellebrite’s internal systems for at least two months.

The company has confirmed that the data breach did occur but stated that the extent of the damage is still under investigation. Cellebrite also stated that it is taking the necessary steps to secure its systems and protect its customers’ data.

Cellebrite’s products have been used to access data from mobile devices. In the past, the company’s tools have been used to extract data from the phones of suspects in high-profile criminal cases, including the investigation into the terrorist attacks in Paris in 2015.

The data breach at Cellebrite highlights the importance of companies securing their systems and protecting their customers’ data. It also raises concerns about the security of the data that is being extracted by law enforcement agencies using Cellebrite’s tools. As the use of digital forensics tools in criminal investigations becomes more widespread, it’s crucial for companies to ensure that their products are secure and that their customers’ data is protected.

In addition, this incident also shows the power of hackers and the potential impact of a cyber-attack on a company which is providing security services. It also serves as a reminder for companies to stay vigilant and have proper security measures in place to detect and respond to potential breaches.

Overall, this data breach at Cellebrite is a reminder of the ongoing need for companies to prioritize cybersecurity, especially when dealing with sensitive data, and the importance of organizations to have incident response plan in place to mitigate the damage and secure data in the event of a breach.