Attackers ‘Steal’ 900GB Of Data From Phone Hacker Cellebrite

The stolen information in Cellebrite hack included customer information and technical product data

Mobile forensics firm Cellebrite has had 900 GB of data stolen from one of its servers in a hack attack, including customer information and technical product data.

The Israeli company is extremely popular in the world of mobile phone hacking, especially with military and law enforcement, and rose to prominence last year after reportedly helping the FBI to crack the iPhone of the San Bernardino terrorist after Apple refused to cooperate.

That was never confirmed or denied by officials, but Cellebrite certainly has the credentials to be involved having previously worked with the Dutch police in a similar matter.

data breach

“Unauthorised access”

In a statement on its website Cellebrite says that it experienced “unauthorised access to an external web server” and is now investigating the scale of the  breach.

“The impacted server included a legacy database backup of my.Cellebrite, the company’s end user license management system,” the statement says.

“The company had previously migrated to a new user accounts system. Presently, it is known that the information accessed includes basic contact information of users registered for alerts or notifications on Cellebrite products and hashed passwords for users who have not yet migrated to the new system. 

“To date, the company is not aware of any specific increased risk to customers as a result of this incident; however, my.Cellebrite account holders are advised to change their passwords as a precaution.”

The company also says it is in the process of notifying all customers believed to be affected and is assisting the “relevant authorities” with their investigation.

According to Motherboard, to which the stolen data was delivered, the information included evidence files from seized mobile phones and logs from Cellebrite devices. The site also confirmed the legitimacy of the email addresses by attempting to create new Cellebrite accounts, but being unable to do so at the emails were already in use.

Such a breach certainly isn’t ideal for a company in Cellebrite’s line of work. It’s most popular product is something called a Universal Forensic Extraction Device (UFED), capable of extracting, decoding and analysing digital mobile data.

After a turbulent 12 months in the cyber security industry, where businesses and consumers were consistently under attacks, 2017 isn’t looking like being any different.

In the last two weeks alone we’ve heard reports of ransomware targeting Linux users and MacOS users being hit with Denial-of-Service attacks, which makes initiatives such as GCHQ’s Cyber Accelerator programme more vital than ever.

Think you’re a cyber security whizz? Try our quiz!