A threat actor has leaked 4TB of confidential data from Cellebrite an Israeli digital intelligence company. Cellebrite is an Israeli company specialized in providing forensic tools to security forces and companies, such as extracting data from an encrypted iPhone or Android mobile. It offers services to collect, review, analyze, and manage digital data. Its tools are used by law enforcement agencies worldwide.
Cellebrite Universal Forensic Extraction Device has similar firmware as Cellebrite Mobilogy. The threat actor has leaked 3.6 TB of data of both these tools. They are mainly used for device diagnostics, content transfer, backup, and restoration. Cellebrite UFED allows lawfully access locked devices with ease, Bypass pattern, password or PIN locks and overcome encryption challenges quickly on popular Android and iOS devices. It also allows collecting data from mobile phones, drones, SIM Cards, SD cards, GPS devices and more. It selectively collects cloud tokens and recover data of many apps without password. You can see the video to understand more details
Another cyber attack targeted Cellebrite Team Foundation Server’s backup files leaking 430 GB of data. Team Foundation Server is like Azure DevOps Server used by the Cellebrite DevOps team. In January 2017 a threat actor hacked into cellebrite and leaked 900 GB of confidential data.
Through resellers in e-commerce stores in the United States and Europe, anyone from authoritarian governments can now purchase Cellebrite to hack and extract from cell phones and tablets such valuable files as call logs, contacts, SMS messages, and a large amount of other personal data, even if they have been deleted. Last year it was reported that in online stores such as eBay and a dozen other specialized websites devices from previous versions of Cellebrite for extraction are being offered on the Internet without major setbacks.
Information security specialist, currently working as risk infrastructure specialist & investigator.
15 years of experience in risk and control process, security audit support, business continuity design and support, workgroup management and information security standards.