FIN10 Extorting Canadian Mining Companies, Casinos
A string of data thefts targeting North American mining companies and casinos are extorting as much as $620,000 from victims. Continue reading FIN10 Extorting Canadian Mining Companies, Casinos
Category Archives: FIN10
Hackers are gaming the media to extort breached casinos in Canada, researchers say
A newly identified hacking group is responsible for breaking into multiple Canadian casinos and mining companies in recent years, exfiltrating sensitive data, posting it online and using media to gain attention to extort victims, according to research conducted by FireEye. Dubbed “FIN10,” the group’s techniques aren’t considered unique or sophisticated. FIN10 has relied on a suite of mostly open source tools and phishing emails to effectively compromise a targeted company, move laterally across their network and gain administrator-level access in order to steal information. After an intrusion, the group will typically seek out breach victims, like company executives and employees, to make their demands heard; threatening to leak sensitive material if they aren’t paid. What sets FIN10 apart from other cyber threat actors is how they behave after stealing sensitive information, which includes reaching out to specific cybersecurity-focused reporters to cover their theft, thereby putting pressure on extortion targets. The […]
The post Hackers are gaming the media to extort breached casinos in Canada, researchers say appeared first on Cyberscoop.
Continue reading Hackers are gaming the media to extort breached casinos in Canada, researchers say