Perpetrators of Three Major Cyber Crimes Have Pled Guilty

Perpetrators of Three Major Cyber Crimes Have Pled Guilty

Every so often, it’s nice to hear about when the good guys win and cybercriminals get their comeuppance. Three such cybercriminals have entered guilty pleas to charges related to major cybersecurity events.

Mirai was a malware strain that creates a botnet out of enslaved Internet of Things devices. By leveraging the resources of these IoT devices, Mirai took down networks and websites. 20 and 21-year-olds Josiah White and Paras Jha have pled guilty for developing and leveraging Mirai.

The duo were co-founders of Protraf Solutions LLC, a company that would mitigate DDoS attacks. Their business model was to sell their solutions to their DDoS victims, or use the DDoS attack the old-fashioned way: as a means of collecting ill-gotten monies from those desperate enough to pay them to stop the attack. Along with 21-year-old Dalton Norman, White and Jha also used Mirai to power a click fraud scheme that net them about 200 Bitcoin, Norman alone netting 30.

Mirai ultimately went on to power one of the biggest attacks the world has ever seen, using IoT devices to take down Dyn, causing many major websites to go down.

Ultimately, the three young malware developers were each charged with click fraud conspiracy, earning each a $250,000 fine and a stay of up to five years in prison. Jha and White plead guilty to conspiracy charges for writing and using Mirai and were each sentenced to an additional 5 years in prison and $250,000 fine, as well as three years of supervised release.

NSA Data
An employee of the National Security Agency, Nghia Hoang Pho, pled guilty on December 17, 2017, to a charge of “willful retention of national defense information.” According to the United States Justice Department, Pho was hired in 2006 as a developer for the Tailored Access Operations unit. The Tailored Access Operations unit, or TAO unit, creates specialized hacking tools that are used to collect data from the information systems used by overseas targets.

Between 2010 and March of 2015, Pho removed classified data and stored it on his home computer, which utilized antivirus software from Kaspersky Lab. Kaspersky Lab is suspected of having been exploited by Russian hackers to steal documents, perhaps including the ones Pho removed and saved at home.

The United States Department of Homeland Security has since issued a directive that bans the use of Kaspersky software in federal agencies. Pho could face up to 10 years in prison and is scheduled for sentencing on April 6.

One of four men who faced indictment in March of 2017 has pled guilty to hacking into Yahoo and exposing the usernames, passwords, and account information for essentially every Yahoo user, with the number of victims counting to about one billion.

22-year-old Karim Baratov, a Canadian, has been charged with working for two members of the Federal Security Service of the Russian Federation. In his work for the FSB, Baratov hacked into 80 accounts, as well as a total of over 11,000 webmail accounts since 2010. Baratov also provided hacking services that enabled access to accounts with Google, Yahoo, and Yandex, via the use of spear-phishing through custom content and a malicious link.

For his activities, Baratov has pled guilty to a total of nine counts. One count, for aggravated identity theft, has a mandatory sentence of two years, while each of the other eight counts could net him 10 years in jail and a fine of $250,000. However, the federal sentencing guidelines established in the United States could reduce the final sentence considerably.

While it is nice to see those responsible for cybercrime paying their dues, it is even better to prevent certain cybercrimes in the first place. If you feel your business might not have the safety measures in place to properly protect you and your organization from cybercriminals, a good strategy could be to partner with a reputable and trusted IT services firm to conduct a comprehensive security audit. 



No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Saturday, 24 February 2018
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Tag Cloud

Tip of the Week Security Privacy Technology Best Practices Cloud Software Business computing Microsoft Google Windows 10 Backup Hackers Network Security Smartphones Malware Business Android Hardware Managed IT Services Alert Small Business Business Continuity Innovation Data Email Office Hosted Solutions Browser Disaster Recovery Computer VoIP Ransomware Outsourced IT Business Management Internet Computers Productivity Data Backup Smartphone Productivity Efficiency Telephone Systems Cloud Computing User Tips Law Enforcement How To Chrome Mobile Devices Cybercrime Virtualization Work/Life Balance Miscellaneous App IT Services Health Passwords Managed IT Services Password Social Media Quick Tips Money Cybersecurity Collaboration Social Engineering Communications Windows Office Tips Two-factor Authentication Router Upgrade Data Recovery Bring Your Own Device Communication Office 365 Private Cloud Windows 10 Google Drive HaaS Artificial Intelligence IT Support Data Breach Hacking Holiday Wi-Fi Facebook Spam Network Automation Big Data Apps Saving Money Mobile Device Management Redundancy End of Support Avoiding Downtime Battery Server Electronic Medical Records Microsoft Office Data Security Remote Monitoring Legal Government Charger Keyboard Comparison Gadgets Patch Management Public Cloud Marketing Data Storage Scam Computer Care OneNote Business Intelligence Employer-Employee Relationship IT Management Spam Blocking History Phishing IT Plan Operating System Flexibility Remote Computing Word PDF Unsupported Software Internet of Things Mobility Managed Service Provider Automobile CES Vulnerability Samsung Data Management Worker Value Workplace Tips Travel Meetings Remote Work Networking Workers Data storage Rootkit Blockchain Audit Politics Loyalty Instant Messaging Books Identity Theft Current Events Infrastructure IT solutions Physical Security Sync Training HIPAA Computer Fan Multi-Factor Security SaaS Internet exploMicrosoft Data loss Credit Cards Knowledge Education Save Money Password Manager IT Support Vendor Management Human Resources The Internet of Things Trending Advertising Computing Infrastructure Wireless Screen Mirroring Emergency Fraud Network Congestion HBO Save Time Business Mangement Telephony Staff FENG Assessment IT Consultant Applications Recovery Cast Amazon Outlook Gmail Settings Techology Best Practice Skype Cleaning Data Protection Experience Specifications Television Leadership Users Update Amazon Web Services Frequently Asked Questions Hiring/Firing Recycling Content Mobile Device Files Start Menu Digital Signature Music Public Computer Search Hybrid Cloud Virtual Reality Transportation Online Shopping Excel Employer Employee Relationship eWaste Audiobook Video Games Apple Tools Wearable Technology Millennials How to Evernote Worker Commute Benefits Tip of the week Computer Accessories Criminal Entertainment iPhone Downtime USB Workforce Black Market Wireless Charging webinar Firewall Windows Server 2008 Bluetooth Windows 10s Google Docs Scalability User Error Relocation Managed IT Root Cause Analysis Troubleshooting BDR Safety Cortana Conferencing Monitor Software Tips Smart Technology Windows 7 Website Information Technology Botnet Telecommuting Bandwidth Google Apps Emails BYOD Two Factor Authentication Humor Flash Content Management Solid State Drive Risk Management Voice over Internet Protocol Internet Exlporer Webinar Thank You Congratulations Encryption CrashOverride WiFi

Mobile? Grab this Article!

QR-Code dieser Seite

Recent Comments

Digital Hold The Case for Hosting Your Phone Solution In-House
24 February 2018
Informative Blog. Thanks a lot for the useful info.
Maria Albert Download the Wrong App and Have More Than Pokémon Fever Infect Your Device
26 September 2017
Occasionally I strive to not concentrate such these kinds of articles and neglect reading like these...
nathan dwyer Your Guide To Mobile Device Management as an SMB
07 September 2017
I come here after quite a while since 2016 and entire this term i have miss the chance to get inform...