In the modern digital landscape, cybercrime has evolved into a sophisticated global enterprise.
With the rise of state-backed hacking groups and independent cybercriminal forums, Russian cybercriminals have gained a reputation for orchestrating some of the most damaging data breaches in recent years.
Their methods are increasingly advanced, often targeting critical infrastructure and high-profile companies, leaving individuals and governments scrambling to protect sensitive data.
In the hands of Russian hackers
One of the latest victims appears to be Gravy Analytics, a major player in the collection and resale of smartphone location data.
The cybersecurity outlet 404media reports that hackers claim to have accessed vast amounts of sensitive information from the company.
This includes customer lists and precise location data linked to individual smartphone users, presenting serious privacy and security concerns.
Gravy Analytics, through its subsidiary Ventel, provides location data services to prominent clients, including several branches of the US government.
Among these are the Department of Defense, the Internal Revenue Service (IRS), the Department of Homeland Security (DHS), and the FBI.
The stolen data was reportedly harvested from smartphones via common apps and ecosystem integrations before being resold to clients.
Hackers have shared images on a Russian cybercriminal forum that suggest deep infiltration of Gravy Analytics’ infrastructure.
Evidence indicates they gained root access to Ubuntu servers, control over the company’s domains, and access to Amazon S3 buckets used for storing large volumes of data.
The leaked materials allegedly include precise location coordinates, timestamps, and other sensitive information.
If verified, the breach could expose not only private data but also national security-related information, given the company’s ties to US government agencies.
