Expert wants to help nab Russian password thieves

Aug 06, 2014 by Martha Mendoza
Chief Information Security Officer Alex Holden of Hold Security, LLC appears during the Black Hat USA 2014 cyber security conference on Wednesday, Aug. 6, 2014, in Las Vegas. Russian hackers have stolen 1.2 billion user names and passwords in a series of Internet heists affecting 420,000 websites, according to Holden, whose firm uncovered the breach. (AP Photo/David Becker)

The hackers are a tight knit group, 10 or 11. They live in a Russian town, and have real jobs. But in their down time, the cybercriminals have spent the past seven months gathering a hoard of personal data, stealing 1.2 billion user names and passwords in a series of Internet heists affecting 420,000 websites, according to Alex Holden, Chief Information Security Officer for Hold Security, whose firm uncovered the breach.

The Russian hackers had been collecting databases of personal information for years, but Holden told The Associated Press Wednesday that in April the group began deploying a new online attack technique that quickly shot from computer system to computer system as unwitting infected users visited random websites.

"Their cache of stolen goods grew quite quickly," said Holden, who has not revealed details about the websites that were breached or the names of other victims.

A native of Kiev who now lives in Milwaukee, Holden has conducted research that contributed to other exposures of major hacks, including a breach at Adobe that exposed tens of millions of customer records. He said he had been tracking the Russian criminals for seven months, but only was able to begin reviewing their massive cache of databases during the past few weeks. He timed his announcement to coincide with the annual Black Hat USA cybersecurity conference this week in Las Vegas, where it created quite a buzz.

Brian Krebs, who investigates online cybercrime and blogs about it, said his phone and email were inundated while he was at the conference Wednesday with people asking about Holden's announcement.

"Alex isn't keen on disclosing his methods, but I have seen his research and data firsthand and can say it's definitely for real," said Krebs. "Without spilling his secrets or methods, it is clear that he has a first-hand view on the day-to-day activities of some very active organized cybercrime networks and actors."

More than a day after his discovery was revealed in a New York Times report, Holden said he had not heard from any law enforcement agencies. He said he hopes investigators do contact him and added that his firm would be happy to cooperate.

Chase Cunningham, lead threat intelligence agent for cloud security company Firehost, spent years tracking Russian crime syndicates with the FBI and the NSA. At Black Hat on Wednesday, he said Hold Security has "uncovered one of the largest caches of data ever seen."

To date, Hold Security says it has only seen the Russian hackers use the personal data to spam social media, for example, hijacking a Twitter account and posting a weight loss ad. And Holden said he's only seen payments ranging from $200 to $1500 —although he's unsure if that's per person or for the entire group— for creating that spam.

Cunningham said he expects the Russian criminals will do much more with their illicit collection, which could prove lucrative.

"They can make money hand over fist with this," he said.

Explore further: Russian hackers stole 1.2 bn passwords (Update)

3.3 /5 (3 votes)
add to favorites email to friend print save as pdf

Related Stories

Russian hackers stole 1.2 bn passwords (Update)

Aug 05, 2014

Russian hackers stole 1.2 billion Internet credentials from major US companies and others around the world in what is likely the biggest data breach ever, security researchers said Tuesday.

Limo firm hacked; politician, celeb data breached

Nov 04, 2013

An Internet security firm says a limousine software company has been hacked, exposing credit card numbers and potentially embarrassing details about close to 1 million customers, including politicians, star athletes and corporate ...

France's Orange hit by hackers data raid

May 07, 2014

Hackers have stolen the personal data of 1.3 million customers of French telephone company Orange, in the second major breach of its kind in a matter of months.

Putin signs law seen as crimping social media

Jul 22, 2014

President Vladimir Putin on Tuesday signed a law requiring Internet companies to store all personal data of Russian users at data centres in Russia, a move which could chill criticism on foreign social networking ...

Irish bookmaker apologizes for 2010 data breach

Jul 31, 2014

(AP)—Irish betting company Paddy Power announced Thursday it is notifying hundreds of thousands of customers that most of their profile information was stolen in 2010, but hackers did not gain their credit card details ...

Recommended for you

China blocks 'privacy' search engine DuckDuckGo

23 hours ago

China has begun blocking the privacy-protecting search engine DuckDuckGo, which avoids storing user data or tracking online activity, according to the company and security researchers.

FBI widens probe of naked celebrity photos

23 hours ago

The FBI vowed Monday to widen a probe into the massive hacking of naked celebrity photos if necessary, after new reported leaks including nude shots of Kim Kardashian.

New ZEBRA bracelet strengthens computer security

Sep 22, 2014

In a big step for securing critical information systems, such as medical records in clinical settings, Dartmouth College researchers have created a new approach to computer security that authenticates users ...

CloudFlare tackles lost SSL key risk with Keyless SSL

Sep 19, 2014

Organizations looking for and concerned about optimal security protection are the targets of a new service announced by San Francisco-based CloudFlare. The offering is called Keyless SSL. CloudFlare explained ...

When does Google hand over your data to governments?

Sep 19, 2014

Governments around the world want to know a lot about who we are and what we're doing online and they want communications companies to help them find it. We don't know a lot about when companies hand over ...

User comments : 0