An extensive data breach at Medialand, a major bulletproof hosting provider, exposed the infrastructure supporting various cybercriminal activities like ransomware, phishing, and data exfiltration. Linked to the notorious Yalishanda group, the leaked information disrupts cybercriminal operations, enables better threat actor attribution, and could lead to significant breakdowns in the cybercrime ecosystem.
Source: https://cybersecuritynews.com/threat-actor-leaked-data-from-medialand/
TPRM report: https://scoringcyber.rankiteo.com/company/medialand
"id": "med336040825",
"linkid": "medialand",
"type": "Breach",
"date": "4/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Cybercriminal Services',
'name': 'Medialand',
'type': 'Bulletproof Hosting Provider'}],
'attack_vector': ['Ransomware', 'Phishing', 'Data Exfiltration'],
'data_breach': {'data_exfiltration': True},
'description': 'An extensive data breach at Medialand, a major bulletproof '
'hosting provider, exposed the infrastructure supporting '
'various cybercriminal activities like ransomware, phishing, '
'and data exfiltration. Linked to the notorious Yalishanda '
'group, the leaked information disrupts cybercriminal '
'operations, enables better threat actor attribution, and '
'could lead to significant breakdowns in the cybercrime '
'ecosystem.',
'impact': {'data_compromised': True,
'operational_impact': True,
'systems_affected': True},
'motivation': 'Cybercriminal Activities',
'threat_actor': 'Yalishanda group',
'title': 'Medialand Data Breach',
'type': 'Data Breach'}