Ukrainian cybercriminal sentenced to 4 years in U.S. prison for credential theft scheme

The defendant earned roughly $80,000 from his crimes between 2017 and 2019, prosecutors said.

The post Ukrainian cybercriminal sentenced to 4 years in U.S. prison for credential theft scheme appeared first on CyberScoop.

Continue reading Ukrainian cybercriminal sentenced to 4 years in U.S. prison for credential theft scheme

Estonian man sentenced to prison for role in cyber intrusions, ransomware attacks

Maksim Berezan was sentenced to 66 months in federal prison for cybercrimes, including ransomware extortions.

The post Estonian man sentenced to prison for role in cyber intrusions, ransomware attacks appeared first on CyberScoop.

Continue reading Estonian man sentenced to prison for role in cyber intrusions, ransomware attacks

Canadian man accused of extorting $28 million in ransomware scheme extradited to U.S.

One of NetWalker’s alleged most prolific affiliates made his first court appearance in the U.S. Thursday.

The post Canadian man accused of extorting $28 million in ransomware scheme extradited to U.S. appeared first on CyberScoop.

Continue reading Canadian man accused of extorting $28 million in ransomware scheme extradited to U.S.

REvil member accused of Kaseya ransomware attack arraigned in Texas

Yaroslav Vasinskyi faces up to 115 years in jail.

The post REvil member accused of Kaseya ransomware attack arraigned in Texas appeared first on CyberScoop.

Continue reading REvil member accused of Kaseya ransomware attack arraigned in Texas

Assange permitted to file U.K. Supreme Court appeal in extradition case

A British court ruled Monday that WikiLeaks founder Julian Assange can ask the country’s Supreme Court to block his extradition to the United States, where he’s accused of violating the Espionage Act and collaborating in criminal hacking activity. The High Court said there is a single “point of law” allowing Assange’s case to proceed. The U.K.’s Supreme Court has not decided whether it will take the case, and there is no guarantee that it will, but Monday’s ruling essentially buys Assange more time. The point of law has to do with the timing of when U.K. judges received and considered assurances from the U.S. about how Assange would be treated once on U.S. soil, according to the BBC. U.S. officials had said Assange would not be sent to a supermax prison or be held in long solitary confinement, but the question is whether those assurances came at the right time […]

The post Assange permitted to file U.K. Supreme Court appeal in extradition case appeared first on CyberScoop.

Continue reading Assange permitted to file U.K. Supreme Court appeal in extradition case

Court hands Microsoft control of websites linked to spying by Chinese hackers

Microsoft obtained a court order to seize websites from a Chinese government-linked espionage group that was using the sites to attack government agencies, think tanks and human rights organizations in 29 countries, the company said Monday. The legal move is aimed at a hacking outfit that Microsoft calls Nickel, which is also known as APT15, Ke3chang or Vixen Panda. It’s been around since at least 2010, and frequently spies on foreign affairs of interest to China. “Obtaining control of the malicious websites and redirecting traffic from those sites to Microsoft’s secure servers will help us protect existing and future victims while learning more about Nickel’s activities,” wrote Tom Burt, Microsoft’s corporate vice president for customer security and trust. “Our disruption will not prevent Nickel from continuing other hacking activities, but we do believe we have removed a key piece of the infrastructure the group has been relying on for this […]

The post Court hands Microsoft control of websites linked to spying by Chinese hackers appeared first on CyberScoop.

Continue reading Court hands Microsoft control of websites linked to spying by Chinese hackers

Fintech company Plaid, consumers reach $58M settlement agreement in privacy suit

Financial tech company Plaid has reached a $58 million settlement agreement in a lawsuit where customers alleged that the company obtained and used their banking information without permission. Plaid’s service connects customer banking accounts to financial apps like Venmo and Robinhood. The plaintiffs claimed that Plaid misled them and violated their privacy by obtaining data from their financial accounts without consent, getting their bank login information through a deceptive interface meant to look like customers’ own bank login screens and selling their transaction histories. Under the settlement agreement, still subject to court approval, Plaid must also delete some data from its systems, minimize the data it stores, improve disclosures of how it uses data and maintain disclosures and websites about its security practices. “We do not, nor have we ever, sold data,” a Plaid spokesperson said. “We make our role and practices clear, and provide services that give consumers control […]

The post Fintech company Plaid, consumers reach $58M settlement agreement in privacy suit appeared first on CyberScoop.

Continue reading Fintech company Plaid, consumers reach $58M settlement agreement in privacy suit

Courts order handover of breach forensic reports in trend welcomed by consumers, feared by defendants

In the past year, three judges have ordered companies that suffered data breaches to hand over internal forensic reports on how the incident happened — a trend that could lend new insights into incidents where consumers’ personal data is exposed, at the expense of companies that want to keep that information to themselves.  In July, a judge ordered the Rutter’s convenience store chain to deliver a forensic report on its data breach to attorneys in a class action suit brought by store customers. It was the kind of decision that could shed light on whether the company neglected cyber defenses leading up to a breach that affected customer credit card data at roughly 70 stores over the course of nine months.   A judge ruled in May 2020 that Capital One would need to provide a forensic report to attorneys for customers who sued the bank over a 2019 incident in […]

The post Courts order handover of breach forensic reports in trend welcomed by consumers, feared by defendants appeared first on CyberScoop.

Continue reading Courts order handover of breach forensic reports in trend welcomed by consumers, feared by defendants