CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Infostealer Breach Exploits Lack of MFA in 50 Enterprises

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

A threat actor, Zestix (aka Sentap), exploited unsecured cloud file-sharing services to steal and auction sensitive data from 50 global organizations. The breach occurred due to the absence of multi-factor authentication (MFA), allowing Zestix to access accounts using credentials obtained from infostealer logs. The stolen data included corporate secrets, customer information, and military IP, with some credentials harvested years before the breach. The actor is linked to Russian and Iranian cybercrime groups and operates as an initial access broker (IAB).

Timeline

  1. 07.01.2026 11:45 1 articles · 23h ago

    Zestix Exploits Infostealer Logs to Breach 50 Enterprises

    Zestix (Sentap) accessed and exfiltrated sensitive data from 50 global organizations by exploiting unsecured cloud file-sharing services. The breach occurred due to the absence of multi-factor authentication (MFA), allowing the actor to use credentials obtained from infostealer logs. The stolen data included corporate secrets, customer information, and military IP, with some credentials harvested years before the breach. The actor is linked to Russian and Iranian cybercrime groups and operates as an initial access broker (IAB).

    Show sources
    Open in new tab

Information Snippets