Search Results for “Jeff Stone”


September 12, 2019
Jeff Stone / Cyberscoop

Jeff Stone / Cyberscoop  
IT Admin Becomes First Member of Infamous Hacking Crew FIN7 to Plead Guilty to Crimes, Faces Up to 25 Years in Prison

An accused operator of the FIN7 hacking collective, Fedir Hladyr, pleaded guilty in federal court in the Western District of Washington to charges in connection with working as the IT administrator of the group that researchers have suggested stole more than $1 billion from victims worldwide.  Hladyr pleaded guilty to wire fraud and conspiracy to commit computer hacking as part of a deal with prosecutors that will result in a prison sentence of no more than 25 years. Hladyr became the first member of the infamous hacking crew to plead guilty to crimes. FIN7 is accused of stealing more than 15 million credit card numbers from victims including Chipotle, Red Robin, Saks Fifth Avenue, Whole Foods and other retailers and restaurants in 47 states.

Tweets:@ItsReallyNick @dcuthbert @jeffstone500 @felixaime @jorgeorchilles


May 21, 2019
Jeff Stone / Cyberscoop

Jeff Stone / Cyberscoop  
Security Training Vendor KnowBe4 Acquires Security Preparedness Measurement Company CLTRe

Security training vendor KnowBe4 has acquired CLTRe, a Norwegian company that specializes in measuring clients’ security preparedness, in a deal with undisclosed terms. KnowB34 provides clients with a simulated phishing platform and has partnered with Kevin Mitnick, the hacker-turned-consultant who now works as KnowBe4’s chief hacking officer. CLTRe provides clients with a framework that lets them know how their security culture changes over time. KnowBe4 will integrate CLTRe assessments into its platform at no additional cost.

May 11, 2019
Jeff Stone / Cyberscoop

Jeff Stone / Cyberscoop  
Feds Charge Six Members of ‘The Community’ Hacking Group, Three Former Mobile Phone Company Employees, in Cryptocurrency Theft SIM Hijacking Cases

Federal prosecutors announced that six individuals connected to a hacking group known to its members as “The Community” were charged in a fifteen-count indictment with conspiracy to commit wire fraud, wire fraud and aggravated identity theft. The indictment alleges they have engaged in identity theft in order to steal cryptocurrency via SIM hijacking, which enabled them to gain control over victims’ phone numbers. In addition, authorities filed a criminal complaint against three former employees of mobile phone providers with wire fraud in relation to the conspiracy, alleging they helped The Community steal the identities of subscribers to their employers’ services in exchange for bribes.

May 23, 2019
Jeff Stone / Cyberscoop

Jeff Stone / Cyberscoop  
Dutch Authorities, Europol Seize One of Top Cryptocurrency ‘Mixing’ Services BestMixer.io

The Dutch Fiscal Information and Investigation Service (FIOD) along with Europol and investigative support from McAfee has seized BestMixer.io, a bitcoin mixing website that authorities say served as one of the busiest cryptocurrency laundering services in the world. Bestmixer.io was one of the three largest mixing services for cryptocurrencies and offered services for mixing the cryptocurrencies bitcoins, bitcoin cash and litecoins, according to Europol. It offered to launder those currencies that may have been tainted in association with Internet crime.

May 10, 2019
Jeff Stone / Cyberscoop

Jeff Stone / Cyberscoop  
One of the Alleged FIN7 Hacking Group Leaders is Scheduled to Be Extradited to U.S. Where He Will Plead Not Guilty

Andrii Kolpakov, allegedly one of the three leaders of the FIN7 hacking group, which authorities say is behind the theft of 15 million payment card numbers, is scheduled to be extradited to the U.S., according to his attorney, Vadim Glozman, who took over the case in April. Kolpakov, will plead not guilty when he arrives in court from Spain to face charges in U.S. District Court for the Western District of Washington. The Ukranian national was arrested in Spain in June 2018 and faces 26 criminal counts in the U.S., including aggravated identity theft, intentional damage to a protected computer and wire fraud.

June 11, 2019
Jeff Stone / Cyberscoop

Jeff Stone / Cyberscoop  
Troy Hunt Is Looking to Sell HaveIBeenPwned, Plans to Work with KPMG to Search for Buyer

Security specialist Troy Hunt is looking for a buyer for the breach-notification database he has pioneered called Have I Been Pwned. The much-lauded site allows visitors to check if their email address has been compromised. Nearly 3 million people have subscribed to its breach notifications, and 120,000 individuals use it to monitor web domains. Hunt plans to work with the mergers and acquisitions team at the professional service firm KPMG to search for a potential buyer. He calls the process Project Svalbard in homage to a massive bank of plant seeds in Norway.

Related: ZDNet Security, TechCrunch, TechNadu, The Register, Troy Hunt, Motherboard, Threatpost, Infosecurity Magazine, GizmodoDark Reading


June 21, 2019
Jeff Stone / Cyberscoop

Jeff Stone / Cyberscoop  
Dell Says SupportAssist Software Flaw Affects Millions of Windows Machines, Issues Advisory Weeks After Patching to Give Third-Party Behind Flaw Time to Release Its Own Advisory

Computer giant Dell issued a security advisory regarding Dell SupportAssist for Business PCs and Dell SupportAssist for Home PCs encouraging customers to patch a software vulnerability that enables hackers to access sensitive information on “several million” machines running Microsoft Windows. The unspecified issue in Dell’s SupportAssist application could allow outsiders to take over a machine and read the stored physical memory, according to SafeBreach Labs. Dell released a patch to fix this issue on May 28 but waited to go public with its advisory to give PC Doctor, the third-party supplier behind the component responsible for the vulnerability, to release its own advisory.

Related: The Register – Security, Dell, Forbes, Help Net Security, ITWeb.co.za latest newsBetaNews, Threatpost, TechRepublic, Computer Business ReviewThe Hacker News, Safebreach Labs

Tweets:@threatpost @Swati_THN


July 3, 2019
Jeff Stone / Cyberscoop

Jeff Stone / Cyberscoop  
Russian Hacking Group Called ‘Silence’ Is Main Suspect in $3 Million Bangladesh ATM Heists

A small Russian hacking group dubbed ‘Silence’ should be considered the main suspect in a bank heist of $3 million in Bangladesh, according to Group-IB. The group appears to have softened up access controls on nine Dutch Bangla Bank ATMs before money mules made a series of cash withdrawals ending on May 31. Local law enforcement officials believe the crooks might be connected with Lazarus Group, a cybercrime organization linked to North Korea, which has been blamed for trying to steal nearly $1 billion from the Bank of Bangladesh in 2016.

Related: Security Affairs, BleepingComputer.comZDNet SecurityThe Register – Security, Group-IB

Tweets:@campuscodi @josephfcox @campuscodi