Two hackers claim breach at staffing agency Robert Half, selling data

Robert Half International Inc., a prominent global staffing and business consulting firm based in Menlo Park, California, has apparently fallen victim to a data breach. The hackers using aliases IntelBroker and Sanggiero allege theft of a substantial amount of sensitive data and are selling on Breach Forums for $20,000, payable in Monero (XMR) cryptocurrency.

According to the hackers, they breached RobertHalf.com on Thursday, February 8th, 2024, suggesting that this incident is separate from a previous breach in June 2022, in which over 1,000 customers had their names, addresses, social security numbers, and tax information compromised. It remains unclear if the same hackers were behind both breaches.

IntelBroker claims to have accessed confidential records, employee documents, customer information, and configuration settings related to services such as OpenAI and Twilio. Screenshots shared by the hackers appear to display stolen data, Git repositories, and AWS-related system settings, including a client list with companies' account names, full names, primary functional roles, titles, and phone numbers.

The full extent of the breach and the nature of the attack, including the number of affected individuals, remains uncertain. Robert Half International Inc. has not commented so far.