"We are currently investigating this TA, but there is some interesting information about the guy behind this attack.
This Monday the user IntelBroker shared in the Breached underground forum data from 1.1 million customer’s from Weee!, which can be accessed for the price of 8 credits (around 2 euros). Currently, the company has not shared any information about how the TA IntelBroker was able to access and exfiltrate this data. IntelBroker spotted for the first time in late 2022 in underground forums XSS and Breached, is well known for leaking databases from companies that had been previously targeted with Endurance ransomware (developed by himself) and did not pay the ransom, as well as details from third-party companies indirectly affected and selling initial access to different companies. This ransomware strain is publicly available in a GitHub repository that Outpost24 analysts attribute with high confidence to Intelbroker. Since October 22, 2022, the threat actor has been looking for C# developers who can help develop Endurance ransomware. A data leak site (DLS) has been created for Endurance ransomware, which is currently under construction.
Amongst his victims, we can find Zurich, Verizon, T-Mobile among others. It is not confirmed if IntelBroker can be the same person as Pompompurin, the threat actor behind attacks like the FBI email data breach."