As promised, we wanted to update you on the status of last week’s cyber attack. Over the weekend, our analysis confirmed source code for League, TFT, and a legacy anticheat platform were exfiltrated by the attackers. Riot Games

Because Vice “reporters” are retards and totally not worth of even linking to their 10k words shitty “article” about the fact that Riot Games’ League of Legends source code got leaked (confirmed by Riot), here is more info about it:

• Link to Breached.vc thread.
• Proof (Directory tree PDF, 300mb, 1078pages).
• Telegram of person involved. If this person is the same as the one that exfiltrated the source code from Riot’s servers, now that’s a good question.
• Size: 72.4GB, files: 572,129, folders: 64,296.
• Original message:

As you know, League of Legends source code has been stolen, confirmed by Riot Games.
I'm starting auction for the source code, at starting $1,000,000.
**INCLUDES PACKMAN (USERMODE ANTI-CHEAT FOR LEAGUE OF LEGENDS & VALORANT) **
** ALSO INCLUDES DEMACIA & XIGNCODE ** 
Current Offer: $1,000,000
Telegram: @ArkaT_001
News Article: https://www.pcgamer.com/riot-says-it-wont-pay-ransom-after-league-of-legends-source-code-stolen-by-hackers/
Twitter post by Riot: https://twitter.com/riotgames/status/1617900234734198787
Min bid increment 10k

Yes, this is plain and simple, I don’t have to write 10k words about nothing because I’m not paid 5 cents-a-word like the Vice “reporters” are. Fuck you.

Step 1: install required tools

$ sudo apt install adb apktool openjdk-11-jdk-headless zipalign apksigner
# replace apktool with new version from https://github.com/iBotPeaches/Apktool/releases
$ sudo mv /usr/share/apktool/apktool.jar /usr/share/apktool/apktool.jar.original
$ sudo mv ~/Downloads/apktool_2.7.0.jar /usr/share/apktool/apktool.jar

Step 2: retrieve the APK file

# start by finding the name of the app
$ adb shell pm list packages | grep <APP_NAME>
# find path of the app
$ adb shell pm path <APP>
# and pull the APK file
$ adb pull <PATH> .

Today we got a new leak, this time from Israeli company Cellebrite and its Swedish competitor, MSAB. From the date listed on some of the manuals inside, the data was exfiltrated in December 2022 - January 2023.

Who

Cellebrite is the global leader in partnering with public and private organizations to transform how they manage Digital Intelligence in investigations to protect and save lives, accelerate justice and ensure data privacy. Cellebrite

MSAB is a global leader in forensic technology for mobile device examination and analysis to protect lives with software solutions. The mission is to find the truth and protect the innocent by using products developed in conjunction with the EU ForMobile standard project. MSAB has been involved in mobile communications since 1984 and has had a singular focus on mobile forensics since 2003. We primarily serve law enforcement agencies but also prisons/correctional institutions, intelligence agencies, tax authorities, border control agencies, the military and selected private companies. MSAB

Where

The message below was posted on an anonymous forum: