XFER Blog

XFER has been serving Michigan since 1994, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Perpetrators of Three Major Cyber Crimes Have Pled Guilty

Perpetrators of Three Major Cyber Crimes Have Pled Guilty

Every so often, it’s nice to hear about when the good guys win and cybercriminals get their comeuppance. Three such cybercriminals have entered guilty pleas to charges related to major cybersecurity events.

Mirai
Mirai was a malware strain that creates a botnet out of enslaved Internet of Things devices. By leveraging the resources of these IoT devices, Mirai took down networks and websites. 20 and 21-year-olds Josiah White and Paras Jha have pled guilty for developing and leveraging Mirai.

The duo were co-founders of Protraf Solutions LLC, a company that would mitigate DDoS attacks. Their business model was to sell their solutions to their DDoS victims, or use the DDoS attack the old-fashioned way: as a means of collecting ill-gotten monies from those desperate enough to pay them to stop the attack. Along with 21-year-old Dalton Norman, White and Jha also used Mirai to power a click fraud scheme that net them about 200 Bitcoin, Norman alone netting 30.

Mirai ultimately went on to power one of the biggest attacks the world has ever seen, using IoT devices to take down Dyn, causing many major websites to go down.

Ultimately, the three young malware developers were each charged with click fraud conspiracy, earning each a $250,000 fine and a stay of up to five years in prison. Jha and White plead guilty to conspiracy charges for writing and using Mirai and were each sentenced to an additional 5 years in prison and $250,000 fine, as well as three years of supervised release.

NSA Data
An employee of the National Security Agency, Nghia Hoang Pho, pled guilty on December 17, 2017, to a charge of “willful retention of national defense information.” According to the United States Justice Department, Pho was hired in 2006 as a developer for the Tailored Access Operations unit. The Tailored Access Operations unit, or TAO unit, creates specialized hacking tools that are used to collect data from the information systems used by overseas targets.

Between 2010 and March of 2015, Pho removed classified data and stored it on his home computer, which utilized antivirus software from Kaspersky Lab. Kaspersky Lab is suspected of having been exploited by Russian hackers to steal documents, perhaps including the ones Pho removed and saved at home.

The United States Department of Homeland Security has since issued a directive that bans the use of Kaspersky software in federal agencies. Pho could face up to 10 years in prison and is scheduled for sentencing on April 6.

Yahoo
One of four men who faced indictment in March of 2017 has pled guilty to hacking into Yahoo and exposing the usernames, passwords, and account information for essentially every Yahoo user, with the number of victims counting to about one billion.

22-year-old Karim Baratov, a Canadian, has been charged with working for two members of the Federal Security Service of the Russian Federation. In his work for the FSB, Baratov hacked into 80 accounts, as well as a total of over 11,000 webmail accounts since 2010. Baratov also provided hacking services that enabled access to accounts with Google, Yahoo, and Yandex, via the use of spear-phishing through custom content and a malicious link.

For his activities, Baratov has pled guilty to a total of nine counts. One count, for aggravated identity theft, has a mandatory sentence of two years, while each of the other eight counts could net him 10 years in jail and a fine of $250,000. However, the federal sentencing guidelines established in the United States could reduce the final sentence considerably.

While it is nice to see those responsible for cybercrime paying their dues, it is even better for certain cybercrimes to be prevented in the first place. XFER can help your business with that. Call us at 734-927-6666 / 800-Get-XFER.

Credit Card and Identity Theft and What to Do If I...
Upgrading Your Technology? Be Careful of What You ...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Tuesday, October 16 2018
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Security Technology Tip of the Week Privacy Microsoft Internet Cloud Best Practices Saving Money Backup Software Workplace Tips Managed Service Provider Business Computing Hackers Small Business Data Hosted Solutions Google Mobile Devices Hardware Productivity Mobile Office VoIP Gadgets Email Malware Quick Tips Network Security Efficiency IT Support Network Social Media Innovation IT Services Business Management Smartphones Miscellaneous Business Continuity Server Upgrade Virtualization Business Communication Windows Disaster Recovery Computer Communications Microsoft Office Managed IT Services Data Backup User Tips Users Browser Mobile Device Management Passwords Android Save Money Smartphone Marketing Holiday Data Recovery Ransomware Alert WiFi Mobile Computing Vendor Management Tech Term Outsourced IT Operating System Cybercrime Internet of Things Remote Monitoring Windows 10 Cloud Computing Information Technology Computers Avoiding Downtime Bring Your Own Device Apple BDR BYOD The Internet of Things Artificial Intelligence Chrome Firewall VPN Automation Current Events Big Data Remote Computing Router Telephone Systems Best Practice IT Solutions History Going Green Application Collaboration Facebook Hacking Social Engineering Phone System Spam Wireless Technology Employer-Employee Relationship Health IT Consultant Cybersecurity Trending Excel App Printer Bandwidth Money Proactive IT Lithium-ion Battery Managed IT Services Office Budget How To Recovery Unified Threat Management Applications Windows 10 iPhone Business Managament Networking Business Intelligence Fax Server Content Filtering Maintenance Windows 8 Two-factor Authentication Mobility Redundancy Law Enforcement Office 365 Productivity PowerPoint Sports User Error Value Phishing Humor Outlook Customer Relationship Management Website Tutorials Hard Drives Data Protection Training Virus Mouse Antivirus Managed IT Gmail Data Security Analytics Apps Private Cloud Computer Repair Data Management Network Congestion Scam IT Management Conferencing Encryption Information Search Tablet Analysis Save Time Twitter Document Management Streaming Media Office Tips Risk Management Google Drive IT Support Vulnerability Blockchain Connectivity Compliance Inbound Marketing Word Flexibility Entertainment Saving Time Retail Administration Identity Theft Settings Downtime Mobile Device Tech Support File Sharing Social Networking Memory Digital Payment IT service Best Available Access Control Video Surveillance Credit Cards DDoS Smart Tech Hacker Bluetooth Data loss Servers People Solid State Drive IBM Samsung Spam Blocking CES Piracy Black Market Fraud Machine Learning Administrator IT Plan Leadership Wireless Physical Security USB Cleaning Password Robot Online Currency Point of Sale Public Cloud Content Management Recycling Computer Accessories SaaS Infrastructure Managed Service Education Unsupported Software Paperless Office Statistics OneNote Social Update Data storage Programming Data Storage Webinar Skype eWaste Virtual Assistant Internet Exlporer Comparison Running Cable PDF Augmented Reality Instant Messaging Intranet Touchscreen Work/Life Balance Data Breach Windows 7 HaaS End of Support Environment Wearable Technology Safety Wi-Fi Government Telephone System Human Resources YouTube Workers Biometrics Meetings Internet exploMicrosoft Travel Criminal Line of Business Virtual Reality Display HBO Electronic Health Records WIndows 7 Mobile Cortana Debate NarrowBand Millennials Wire Printer Server Shortcut Customers Macro Wireless Charging Cryptocurrency Webcam User FENG Uninterrupted Power Supply Multi-Factor Security Strategy Content Filter Camera Worker Commute Knowledge Managing Stress Domains Patch Management Advertising Authentication MSP Bloatware Co-managed IT Frequently Asked Questions 360 Emails Distributed Denial of Service Files Professional Services Google Apps Insurance Science Screen Mirroring Chromecast Workforce Smart Office Flash Fiber-Optic Safe Mode Electronic Medical Records Lifestyle Storage PC Care HVAC Scheduling Windows 10s Notifications Software as a Service Nanotechnology Remote Worker 3D Entrepreneur Business Owner Tip of the week Amazon Colocation Tools Practices Tablets IT Security eBay Charger Cast Laptop Telecommuting SharePoint Sync Cables Accountants Business Technology Hiring/Firing Print Server Hiring/Firing Shadow IT Addiction Virtual Private Network Windows Media Player Virtual Desktop Alerts HIPAA Enterprise Content Management nternet Crowdfunding Hybrid Cloud Wiring Remote Support Cost Management Windows Server 2008 Amazon Web Services Hosted Solution IaaS Computing Infrastructure Password Manager Hosted Computing Proactive Upgrades Analyitcs Text Messaging Computer Care Touchpad Software Tips Remote Work Students Relocation Telephony Unified Communications Gaming Console Law Firm IT Legal Cache Project Management Customer Service Company Culture Work Station Keyboard Online Shopping Password Management Consultant Audit Help Desk Google Docs Staff Devices GDPR Monitor Netflix Botnet Business Mangement Inventory Remote Monitoring and Maintenance Healthcare LinkedIn Start Menu Theft IoT Root Cause Analysis Data Warehousing Specifications Wireless Internet Warranty Cameras Net Neutrality Regulations Evernote NIST Licensing Computer Fan Voice over Internet Protocol Digital Signature Thought Leadership E-Commerce Windows 8.1 Update Supercomputer Reputation Emergency Congratulations Battery Regulation Worker Video Games Music Audiobook Assessment Rootkit Scalability Printers Politics Transportation Television Troubleshooting Webinar How to Techology Benefits Automobile Public Computer IT solutions Employer Employee Relationship CrashOverride Smart Technology Books Thank You Loyalty Experience Two Factor Authentication Content

Sign up for our Newsletter!

  • Company Name *
  • First Name *
  • Last Name *
      • Company Name *
      • Number of Participants *
      • First Name *
      • Last Name *
      • Phone *
      • Yes, subscribe me to: