A prominent threat actor, known as “nastya_miyako,” has claimed on a dark web forum to possess root access to servers hosting firewalls for multiple US city governments.
The access is reportedly being offered for sale at prices ranging from $300 to $700.
According to the post from ThreatMon, the affected city governments include Virginia, California, Michigan, Kentucky, Montana, Mississippi, and even Mexico.
This alarming revelation raises serious concerns about the cybersecurity vulnerabilities of municipal systems across the United States.
Miyako’s Advanced Cyber Capabilities
Miyako is an emerging and sophisticated cybercriminal entity known for targeting critical infrastructure, financial institutions, and government agencies.
The group employs advanced techniques such as exploiting zero-day vulnerabilities in firewalls and VPNs, deploying malware with evasion capabilities, and using legitimate administrative tools like PowerShell to remain undetected.
Miyako’s operations often culminate in double-extortion ransomware attacks, where victims are threatened with both encryption of their data and public exposure if demands are not met.
This latest claim highlights Miyako’s focus on monetizing unauthorized access to sensitive systems. By targeting firewalls that protect municipal networks, the group could potentially gain control over critical services or exfiltrate sensitive data.
Implications and Response Measures
The implications of this alleged breach are significant.
If true, it could lead to disruptions in essential services managed by the affected city governments, such as water supply, transportation systems, or emergency response operations.
Additionally, the sale of such access on the dark web increases the risk of exploitation by other malicious actors.
Cybersecurity experts recommend immediate action by city governments to assess their network defenses and patch any vulnerabilities in their systems.
Enhanced monitoring of dark web activity and collaboration with federal cybersecurity agencies are also critical steps in mitigating this threat.
This incident underscores the growing sophistication of cybercriminals like Miyako and the urgent need for robust cybersecurity measures across all levels of government.
Also Read:
%20(1)%20(1).webp?resize=1600,900&ssl=1&description="nastya_miyako," has claimed on a dark web forum to possess root access to servers hosting firewalls for multiple US city governments.){kind=link}