- Business Systems House was raped in September
- It is an ADP trading partner, which served Broadcom at some point
- Now, sensitive Broadcom files seem to have emerged on the dark web
Customers of the Global Broadcom semiconductive giant has disclosed their sensitive data on the Dark Web after a two-step supply chain attack. Apparently, a company called Business Systems House (BSH), a human capital management service provider (HCM) in the Middle East, underwent a ransomware attack in September 2024, in which a group known as El Dorado (later renamed Blacklock), stole its files.
This company is a trading partner of the ADP pay company which, in turn, worked with Broadcom. In fact, the chip giant was changing the pay suppliers when the incident occurred, which means that it almost dodged this ball.
However, in December 2024, the two companies discovered stolen data on the Internet. “Because the data taken by the criminal actor was in an unstructured format, definitively determining which employees were affected and, for each employee, which data fields were disclosed, was a long process for BSH / ADP, and that this information was made available to Broadcom until May 12, 2025”, she was explained.
El Dorado or Blacklock
According to The registerWho first broke the story, the attackers issued the following data:
- National identification numbers
- National Health Insurance issue
- Health insurance policy / Identification numbers
- Financial account numbers
- Birth dates
- Wage details
- Employment termination date
- Personal email addresses
- Personal phone numbers
- Personal addresses
Broadcom has urged everyone to activate the MFA and any other security establishment provided by their financial institutions. In addition, he warned users to monitor their financial files.
You will be forgiven not to know who is El Dorado. It is a relatively new ransomware operation, emerging in March 2024, and already renamed in Blacklock. Broadcom stolen files were also published on the Blacklock’s leak site. Alternatively, the group is made up of Russian people.
Broadcom serves a diverse range of customers in various industries, including technology, finance, health care and telecommunications. Some of the biggest names include Apple, Samsung, Cisco, British Airways and many others. ADP, The register The statements are not worse, but so far, no one has declared that they have lost data.
Via The register
