Single Hacker Behind Dozens of Major Corporate Data Breaches

Cybercriminal 'Zestix' breaches major sectors using stolen credentials, selling data from companies like Iberia and Samsung.

By Content Team

Jan 6, 2026

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

A cybercriminal operating as 'Zestix' and 'Sentap' has orchestrated dozens of major data breaches since 2021, targeting aerospace, government, legal, and robotics companies worldwide. The hacker uses stolen employee credentials harvested by malware like RedLine and Vidar to access file-sharing services including ShareFile and Nextcloud.

Notable victims include Spanish airline Iberia (77GB of data sold for $150,000), engineering firms, defense contractors, and healthcare organizations. The attacker exploited weak security at companies lacking multi-factor authentication on critical systems.

Hudson Rock researchers found credentials from thousands of organizations circulating in hacker forums, including major names like Deloitte, Samsung, and Walmart. The threat actor has built a reputation for reliability in underground markets, selling both stolen data and system access to other criminals.

Source: SecurityWeek

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Critical Net-SNMP Flaw Threatens Network Infrastructure Worldwide

Dec 25, 2025

Chinese Hackers Hijacked Notepad++ Updates Through Hosting Provider Compromise

Feb 2, 2026

Ingram Micro Ransomware Attack Exposes 42,000 People's Personal Data

Jan 19, 2026

Critical GNU Wget2 Vulnerability Lets Attackers Overwrite System Files

Jan 5, 2026