Catalin Dragomir, known as 'inthematrixl', breached the Oregon Department of Emergency Management network in June 2021. He exfiltrated personally identifiable information (PII) including names, emails, dates of birth, and passport numbers, and subsequently sold this access and data. His activities led to over $250,000 in losses across multiple U.S. victims.
Initial Access
Government Network Breach
confirmed
Catalin Dragomir, using the online handle 'inthematrixl', gained unauthorized access to the Oregon Department of Emergency Management's network in June 2021. The specific method of initial access was not detailed in the article.
Defender cut points
Implement strong multi-factor authentication for all external access pointsRegularly patch and secure public-facing applications
