The World's Largest Cybercrime Empire
When you hear of state-sponsored cybercrime, you probably conjure up images of cybercriminals linked with the Russian government outwitting sophisticated infosec systems and stealing mountains of state data.
Well, that’s pretty representative of your average state-sponsored hack, only that the latest and biggest hacking ring to be busted (sort of) is run by regular Ukrainian guys and employs sophisticated state-sponsored techniques, primarily targeting American businesses and companies.
Biggest Hacking Organization
Meet the Fin7 hacking Group, the most costly cybercrime ring in town. The group has earned its stripes as one of the most sophisticated and aggressive hacking organizations in the world, alleged to have leeched a billion dollars from companies in America and around the world.
Fin 7, aka Carbanak Group, has stolen more than 15,000 credit card data-sets from at least 3,600 businesses around the world in its years-long operation. The DoJ has already indicted three Ukrainian nationals for their involvement and charged them with 26 counts of felony each, including conspiracy, hacking and wire fraud.
The three men, Dmytro Fedorov (44), Fedir Hladyr (33), and Andrii Kopakov (30), were high-level operatives in the underground empire as an administrator and group supervisors, respectively. But make no mistake: Fin 7 still continues its insidious operations even with the three firmly behind bars.
Barry Vengerik, threat analyst at FireEye Inc. and coauthor of the Fin7 report, says the have been surprised by the sophistication of the techniques employed by the group, most of them associated with state-sponsored hacks and not your average financially motivated cybercrime.
It’s a plot that would impress even the most battle-weary sleuth.
Take the case of one unnamed employee at a Red Robin Gourmet Burgers and Brews. One day this employee received an email from firstname.lastname@example.org from what appeared like a normal email from a disgruntled customer kvetching about a bad experience they had at the hotel.
The email urged the recipient to open a certain attachment for further details. Unfortunately, the employee fell for the ruse and opened said attachment, unwittingly granting access to the Fin 7 network.
In a matter of days, the hackers had mapped the hotel’s internal network. Within a week, they had stolen the username and password for the hotel’s point-of-sale system. Inside two weeks, a Fin 7 member uploaded a file containing usernames and passwords for nearly 800 Red Robin locations including details about location of alarm panels within individual restaurants. That’s how thorough Fin 7 is.