Expert wants to help nab Russian password thieves

Aug 06, 2014 by Martha Mendoza
Chief Information Security Officer Alex Holden of Hold Security, LLC appears during the Black Hat USA 2014 cyber security conference on Wednesday, Aug. 6, 2014, in Las Vegas. Russian hackers have stolen 1.2 billion user names and passwords in a series of Internet heists affecting 420,000 websites, according to Holden, whose firm uncovered the breach. (AP Photo/David Becker)

The hackers are a tight knit group, 10 or 11. They live in a Russian town, and have real jobs. But in their down time, the cybercriminals have spent the past seven months gathering a hoard of personal data, stealing 1.2 billion user names and passwords in a series of Internet heists affecting 420,000 websites, according to Alex Holden, Chief Information Security Officer for Hold Security, whose firm uncovered the breach.

The Russian hackers had been collecting databases of personal information for years, but Holden told The Associated Press Wednesday that in April the group began deploying a new online attack technique that quickly shot from computer system to computer system as unwitting infected users visited random websites.

"Their cache of stolen goods grew quite quickly," said Holden, who has not revealed details about the websites that were breached or the names of other victims.

A native of Kiev who now lives in Milwaukee, Holden has conducted research that contributed to other exposures of major hacks, including a breach at Adobe that exposed tens of millions of customer records. He said he had been tracking the Russian criminals for seven months, but only was able to begin reviewing their massive cache of databases during the past few weeks. He timed his announcement to coincide with the annual Black Hat USA cybersecurity conference this week in Las Vegas, where it created quite a buzz.

Brian Krebs, who investigates online cybercrime and blogs about it, said his phone and email were inundated while he was at the conference Wednesday with people asking about Holden's announcement.

"Alex isn't keen on disclosing his methods, but I have seen his research and data firsthand and can say it's definitely for real," said Krebs. "Without spilling his secrets or methods, it is clear that he has a first-hand view on the day-to-day activities of some very active organized cybercrime networks and actors."

More than a day after his discovery was revealed in a New York Times report, Holden said he had not heard from any law enforcement agencies. He said he hopes investigators do contact him and added that his firm would be happy to cooperate.

Chase Cunningham, lead threat intelligence agent for cloud security company Firehost, spent years tracking Russian crime syndicates with the FBI and the NSA. At Black Hat on Wednesday, he said Hold Security has "uncovered one of the largest caches of data ever seen."

To date, Hold Security says it has only seen the Russian hackers use the personal data to spam social media, for example, hijacking a Twitter account and posting a weight loss ad. And Holden said he's only seen payments ranging from $200 to $1500 —although he's unsure if that's per person or for the entire group— for creating that spam.

Cunningham said he expects the Russian criminals will do much more with their illicit collection, which could prove lucrative.

"They can make money hand over fist with this," he said.

Explore further: Russian hackers stole 1.2 bn passwords (Update)

3.3 /5 (3 votes)
add to favorites email to friend print save as pdf

Related Stories

Russian hackers stole 1.2 bn passwords (Update)

Aug 05, 2014

Russian hackers stole 1.2 billion Internet credentials from major US companies and others around the world in what is likely the biggest data breach ever, security researchers said Tuesday.

Limo firm hacked; politician, celeb data breached

Nov 04, 2013

An Internet security firm says a limousine software company has been hacked, exposing credit card numbers and potentially embarrassing details about close to 1 million customers, including politicians, star athletes and corporate ...

France's Orange hit by hackers data raid

May 07, 2014

Hackers have stolen the personal data of 1.3 million customers of French telephone company Orange, in the second major breach of its kind in a matter of months.

Putin signs law seen as crimping social media

Jul 22, 2014

President Vladimir Putin on Tuesday signed a law requiring Internet companies to store all personal data of Russian users at data centres in Russia, a move which could chill criticism on foreign social networking ...

Irish bookmaker apologizes for 2010 data breach

Jul 31, 2014

(AP)—Irish betting company Paddy Power announced Thursday it is notifying hundreds of thousands of customers that most of their profile information was stolen in 2010, but hackers did not gain their credit card details ...

Recommended for you

Man pleads guilty in New York cybercrime case

Nov 22, 2014

A California man has pleaded guilty in New York City for his role marketing malware that federal authorities say infected more than a half-million computers worldwide.

How to keep the world's eyes out of your webcam

Nov 21, 2014

There are concerns that thousands of private webcams around the world could be streaming live images to anybody who wishes to view them – without their owner knowing – thanks to a Russian website provi ...

Britain urges Russia to shut down webcam spying site

Nov 20, 2014

A Russian website offering thousands of live feeds peering into bedrooms and offices around the world by accessing poorly secured webcams should be taken down immediately, British officials said on Thursday.

NSA Director: China can damage US power grid

Nov 20, 2014

China and "one or two" other countries are capable of mounting cyberattacks to shut down the electric grid in parts of the United States. That's according to Admiral Michael Rogers, the director of the National Security Agency ...

Some in NSA warned of a backlash

Nov 20, 2014

Current and former intelligence officials say dissenters within the National Security Agency warned in 2009 that secretly collecting American phone records wasn't providing enough intelligence to justify ...

Russia hacking site spying webcams worldwide: Britain

Nov 20, 2014

Britain's privacy watchdog on Thursday called on Russia to take down a site showing hacked live feeds from thousands of homes and businesses around the world and warned it was planning "regulatory action".

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.