Incident Report
A Look into the Britam Defence Data Leak Files
A few days ago we did a report that a British based defence company, Britam Defence had been leaked and confidential files had been published online.
Since then i have had time to start going over all the files and put together a basic draft of what is in there, who has been effected and any other important information.
So here it is:
Interesting Information
Skip this to the bottom if you wish to know about single file/folder contents but its good to read it all to properly understand everything.After spending some time going over this stuff i have found the only folder really needed was arch33 which contains all leaked data and gives better insight in to the operations and company’s Britam is working with.
The emails in this leak and files and information mainly trace back to two Britam defence administration, one of which is the founder and dynamic director, Philip doughty and his Business Development Director David Goulding.
Extremely personal information such as a self complied C.V, copy’s of passports and more have been leaked from David and Philip as well as emails and other plans.
From a lot of the documents its very clear that britam is working closely and even offering types of training programs to the National Saudi Gaurd and some of its internal departments and specialist groups.
Company’s that have contracts with Britam range from a couple of thousand up to Millions of dollors and have been on going for some time now.
.
In the hackers release note they made it clear they got the data from a Malaysian based server and from a chart found within this data its shocking to see that Britam is using the security of McAfee but is not implementing this on the said server which is listed as a mail server. (see pic to below)
Its also clear that Britam does not practice data security very well as they have been storing user credentials, network information in unencrypted formats.
Break down of each folder.
Syria Folder:
288 KB2 PDF files and 1 email file.
File name: CV P Doughty CV2 091.pdf
CV for Philip doughty who is the dynamic director and founder of Britam Defence, currently resides in UAE according to his CV.
File name: Phil Doughty PP1 7200830372.pdf
PDF copy of current English, Irish passport for Philip Doughty.
File name: Sirian Issue.eml
Email between David Goulding who is the Business Development Director and Philip regarding a new offer about an operation in syria.
Phil
We’ve got a new offer. It’s about Syria again. Qataris propose an attractive deal and swear that the idea is approved by Washington.
We’ll have to deliver a CW to Homs, a Soviet origin g-shell from Libya similar to those that Assad should have.
They want us to deploy our Ukrainian personnel that should speak Russian and make a video record.
Frankly, I don’t think it’s a good idea but the sums proposed are enormous. Your opinion?
Kind regards
David
Iran folder:
Size: 938kb16 doc files and 1 email file total
The Iran folder contains heaps of operation plans of attack and defend as well as procedures for preventing or using chemical warfare luring targets to kill zones, medical help, intelligence to the surrounding of operations and more. all together there appears to be 15 plans of operation.
It also has a file named Draft which is a email draft used for the announcement of the current operations. Appears the .doc operation files are the results of an attachment to from that email.
Preview of each of the attachments from the email.
Gallery not found. Please check your settings.
There is also a file named Iranian Issue.eml
Contact between phil and david over confirmation of plans of operations in iran by the saudis.
Phil
Please see attached details of preparatory measures concerning the Iranian issue.
Participation of Britam in the operation is confirmed by the Saudis.
http://mbf.cc/OTEH8
Iraq Folder:
Size: 153 MB9 Folders, 7 PDF Files, 7 DOCX Files, 6 CSV Files, 2 image files
First file looked at was a summury report from STRATFOR titlled “Curious U.S. and French Military Deployments”. Other files include incident reports, weather reports, management plans for trips, data sheets and more.
Break down of sub Folders:
Britam Internet Networks & Passwords
887KB2 PDF, 5 DOC, 1 folder that contains 4 further DOC files.
Sadly they have gone to the effort to created human readable documents in various formats that contain current login credentails for every single user related to Britam and its complete network. the files appear to be various working with one pdf contain all information.
Contracts
37.7MB8 PDF, 1 CSV , 1 Image, 1 Folder named BP that contains full contract details and information.
Folder contains a list of contracts, the operations, the amount due or paid. Amongst these are agreements, history, payments, guides, charts, information and much more. It also has contract agreements about clearing land mines and keep roads safe of explosive devices.
Daily Orders
3.88 MB53 DOC Files, 80 Excel files.
These contain daily movements for months of 2012, daily spending reports as well as a organisational chart.
incident
2.87MB9 DOC, 3 PDF, 1 Email, 1 power point presentation
These files consist of incident reports such as Britam security staff being stopped at check points and digital equipment being siezed. As well as drunk officers, requests for CCTV and security breach reports.
MOI
2.8MB3 Images
Letters from the ministry of inertia of Iraq. Unknown content at time of publishing.
People
57MBContains Personal copys of passports of employees of Britam and other unknown related people. Passports are in variuos formats such as images, pdf etc.
Report
14.5MB5 PDF, 5DOC 37 Excel files
Daily mission reports for various mission that Britam has been or is involved with.
Sitrep
17.9MB8 PDF 21 Doc
Contains restricted operation reports related to halliburton (http://www.halliburton.com/)
No comments:
Post a Comment