Ukrainian Hacker Caught Selling Government Databases for Crypto

Published at: July 10, 2020

A Ukrainian hacker got caught selling confidential information gathered from Ukrainian central government databases.

According to a media release from the Ukrainian Cyberpolice, a hacker whose identity was not disclosed was able to break into many government databases by compromising personal accounts of authorized staff.

The hacker reportedly used brute force approaches to break into email addresses and social media accounts. Through this simple method, he appears to have found 50 government databases with up-to-date information.

He then sought to sell the captured information on hacker forums in exchange for cryptocurrency. Authorities did not disclose which currency was used.

The police searched the perpetrator’s apartment and confiscated the equipment that was used to conduct these deals. A picture from what appears to be his computer shows a Skype conversation supposedly in connection with these deals. The hacker told a potential customer that the price was “6.5 [rubles] for one valid [entry].” Presumably the customer was located in Russia, as Ukraine’s currency is the hryvnia. The price quote amounts to about $0.10 per database entry.

The perpetrator was charged with “unauthorized sale and distribution of information with limited access,” a crime with a maximum prison sentence of five years. Given the lack of high treason charges, it seems likely that the data was not extraordinarily sensitive.

Other hacking stories

Hackers will often use cryptocurrency to sell sensitive data. As Cointelegraph reported earlier in July, a hacker group netted over $7 million by selling stolen credit card data.

One common hacking method involving cryptocurrencies is ransomware, where malware encrypts the computer’s data and requests payment in crypto to unlock it. Despite many reported attacks, a recent finding shows that the frequency of these exploits declined in 2020.

A high profile data leak interested the crypto world in May, when a SIM swapping attack resulted in the compromise of BlockFi’s customer database.

Tags

Business

Hacks

Hackers

Ukraine

Related Posts

The aftermath of Axie Infinity’s $650M Ronin Bridge hack

In late March, Ronin, an Ethereum sidechain built for the popular play-to-earn nonfungible token game Axie Infinity, was hacked for over 173,600 Ether (ETH) and 25.5 million USD Coin (USDC) for a combined value of over $600 million. The breach on the Ronin bridge was confirmed by Sky Mavis, the developers behind the popular play-to-earn (P2E) game: There has been a security breach on the Ronin Network.https://t.co/ktAp9w5qpP — Ronin (@Ronin_Network) March 29, 2022 The official report from the company noted that the hackers managed to get access to private keys to validator nodes resulting in the compromise of five validator …

Blockchain / April 12, 2022

LastPass data breach led to $53K in Bitcoin stolen, lawsuit alleges

A class action lawsuit has been filed against password management service LastPass following a data breach from Aug. 2022. The class action was filed with the U.S. district court of Massachusetts on Jan. 3, by an unnamed plaintiff known only as “John Doe” and on behalf of others similarly situated. It alleges that the data breach of LastPass has resulted in the theft of around $53,000 worth of Bitcoin. The plaintiff claimed he began accruing BTC in Jul. 2022 and updated his master password to more than 12 characters using a password generator, as recommended by the LastPass “best practices.” …

Business / Jan. 5, 2023

Binance and Huobi freeze $1.4M in crypto linked to North Korean hackers

Cryptocurrency exchanges Binance and Huobi have again frozen accounts linked to the $100 million Harmony Horizon bridge attack on Jun. 24, 2022. Around $1.4 million worth of crypto frozen by the trading platforms came from accounts linked to the notorious Lazarus Group operating out of North Korea. The investigation was carried out by blockchain analytics firm Elliptic, according to a report shared by the firm on Feb. 14. However, the firm didn’t state what coins or tokens were frozen. Exchanges @binance and @HuobiGlobal today froze accounts containing $1.4 million stolen by North Korea’s Lazarus Group. This was made possible thanks …

Blockchain / Feb. 15, 2023

Coinbase discloses recent cyberattack targeting employees

Crypto exchange Coinbase experienced a cybersecurity attack targeting its employees on Feb. 5. The attack came through SMS scams and involved impersonations of IT staff, according to a recent report from the company's engineering team. No customers' funds or information were impacted, the firm said. As per the report, on a late Sunday several Coinbase employees received SMS messages requiring them to urgently log in via the link provided to access an important message. Acting in a good faith, one employee followed the exploiter' instructions: "While the majority ignore this unprompted message - one employee, believing that it’s an important …

Technology / Feb. 22, 2023

Top 7 cybersecurity jobs in high demand

In today’s digital age, cybersecurity has become a critical aspect of almost every business. Cyber threats are increasing daily, and businesses must take proactive measures to protect their networks and data. As a result, the demand for cybersecurity professionals has skyrocketed. Little Friday humour #meme #cybersecurity @hackurityio pic.twitter.com/MArEpCh03k — Harold De Vries (@devries_harold) February 17, 2023 In this article, we will discuss the top seven cybersecurity jobs that are in high demand. Cybersecurity analyst A cybersecurity analyst is responsible for identifying and mitigating cyber threats to an organization’s network and data. They examine system logs and network traffic to find …

Technology / Feb. 26, 2023