Carding 4 Carders
Professional
- Messages
- 2,724
- Reaction score
- 1,578
- Points
- 113
When the intermediary becomes a victim.
Kodex acts as an intermediary between law enforcement agencies and tech giants, verifying requests for customer data. Now hackers have decided to make Kodex their target.
One of the reasons for Kodex's existence is to provide additional verification of requests that technology companies receive from law enforcement agencies. Hackers have increasingly posed as law enforcement officers using compromised government emails to then fraudulently demand sensitive data from targeted companies. Now Kodex itself has become a target because of its privileged position as a trusted party in this data supply chain.
Matt Donahue, a former FBI agent and now CEO of Kodex, said that several compromised accounts did not have permission to submit such requests, and that Kodex blocked these accounts. However, repeated examples of criminal conversations show that Kodex attracts the attention of hackers.
Emergency Data Requests (EDRs) are used by law enforcement agencies to obtain data from a company in situations where they believe they don't have time to get a subpoena, search warrant, or otherwise use a more conventional legal mechanism. For example, it can be a kidnapping or a terrorist attack.
Kodex, launched in February 2021, acts as an intermediary for these data requests. Kodex assigns something like a credit rating to each law enforcement agency. Employees who have been sending legitimate requests for a long time will have a higher rating.
In September, 404 Media first contacted Kodex for a comment about the compromised account. In this case, Donahue stated that the account was flagged by their system due to suspicious login behavior and has since been suspended.
Donahue added that despite their team's extensive experience in account security, they continue to monitor suspicious activity and compromised email domains even after the account has been checked for EDRs.
Kodex acts as an intermediary between law enforcement agencies and tech giants, verifying requests for customer data. Now hackers have decided to make Kodex their target.
One of the reasons for Kodex's existence is to provide additional verification of requests that technology companies receive from law enforcement agencies. Hackers have increasingly posed as law enforcement officers using compromised government emails to then fraudulently demand sensitive data from targeted companies. Now Kodex itself has become a target because of its privileged position as a trusted party in this data supply chain.
Matt Donahue, a former FBI agent and now CEO of Kodex, said that several compromised accounts did not have permission to submit such requests, and that Kodex blocked these accounts. However, repeated examples of criminal conversations show that Kodex attracts the attention of hackers.
Emergency Data Requests (EDRs) are used by law enforcement agencies to obtain data from a company in situations where they believe they don't have time to get a subpoena, search warrant, or otherwise use a more conventional legal mechanism. For example, it can be a kidnapping or a terrorist attack.
Kodex, launched in February 2021, acts as an intermediary for these data requests. Kodex assigns something like a credit rating to each law enforcement agency. Employees who have been sending legitimate requests for a long time will have a higher rating.
In September, 404 Media first contacted Kodex for a comment about the compromised account. In this case, Donahue stated that the account was flagged by their system due to suspicious login behavior and has since been suspended.
Donahue added that despite their team's extensive experience in account security, they continue to monitor suspicious activity and compromised email domains even after the account has been checked for EDRs.
