Phishing on a BPO support employee → RAT → escalation to manager → full access to the ticketing platform. The damning architectural detail: the platform let any agent export every ticket in one bulk request, with no rate limits or volume alerts. 13M tickets, 15K employee records, and the bug-bounty program’s submissions.
← Findings
Adobe support tickets exfiltrated via BPO
Phishing on a BPO support employee → RAT → escalation to manager → full access to ticketing. The platform let any agent export every ticket in one bulk request.