Skip to content

$1M for FBI’s Most Wanted Cyber Fugitive Nicolae Popescu

2014 November 24
by Todd Plesco

FBI is offering a $1 Million reward for Romanian cybercriminals Nicolae Popescu and Dumitru Daniel Bosogioiu who were originally charged in a criminal complaint with 11 other defendants for their participation in a cyber fraud conspiracy which targeted U.S.-based websites such as Cars.com and AutoTrader.com  RewardThe defendants allegedly pretended to sell cars from nonexistent auto dealerships in the United States and created phony websites for these fictitious dealerships. As part of the scheme, the defendants produced and used high-quality fake passports to be used as identification by co-conspirators in the United States to open American bank accounts. After the “sellers” reached an agreement with the victim buyers, they would often email them invoices purporting to be from Amazon Payments, PayPal, or other online payment services, with instructions to transfer the money to the American bank accounts used by the defendants. The defendants and their co-conspirators allegedly used counterfeit service marks in designing the invoices so that they would appear identical to communications from legitimate payment services. The illicit proceeds were then withdrawn from the U.S. bank accounts and sent to the defendants in Europe by wire transfer and other methods.
*The charges in the complaint and the indictment are merely allegations, and the defendants are presumed innocent unless and until proven guilty.

China suspected in hack of USIS

2014 November 8
by Todd Plesco

Up to 5 million employees and contractors who submitted background investigation information, and individuals who USIS logoreceived/renewed a DHS clearance, between July 2009 and May 2013, primarily for positions at DHS HQ, Customs and Border Protection (CBP), and Immigration and Customs Enforcement (ICE), may have had their personally identifiable [information such as applicants’ names, Social Security numbers (SSN), and date of birth (DOB) which was input into the electronic Standard Form 86 within the computerized program called e-QIP] exposed in a State Sponsored breach by China. 

Snowden pontificates then Dropbox claims 7M stolen passwords are hoax

2014 October 14
by Todd Plesco

Hackers, requesting bitcoin donations, claimed to have 7 million accounts from Dropbox servers.  Samples of approximately 700 victims were posted in plain text to Pastebin as four linked files along with a message:

Here is another batch of Hacked Dropbox accounts from the massive hack of 7,000,000 accounts
To see plenty more, just search on [redacted] for the term Dropbox hack.

More to come, keep showing your support

Dropbox's blog posting by Anton Mityagin on October 13, 2014, has since denied the breach stating that the login/password information is outdated and from a 3rd party:

Recent news articles claiming that Dropbox was hacked aren’t true. Your stuff is safe. The usernames and passwords referenced in these articles were stolen from unrelated services, not Dropbox. Attackers then used these stolen credentials to try to log in to sites across the internet, including Dropbox. We have measures in place to detect suspicious login activity and we automatically reset passwords when it happens.

Attacks like these are one of the reasons why we strongly encourage users not to reuse passwords across services. For an added layer of security, we always recommend enabling 2 step verification on your account.

 

Update: 10/14/2014 12:30am PT

A subsequent list of usernames and passwords has been posted online. We’ve checked and these are not associated with Dropbox accounts.

Users in Reddit have claimed that multiple credentials were working at the time of the Reddit site posting.

Ironically, shortly before the Reddit posting, Edward Snowden stated in a Google Hangout session with Jayne Mayer for the New Yorker Festival,

We’re talking about encryption, we’re talking about dropping programs that are hostile to privacy, for example Dropbox. Get rid of Dropbox. It doesn’t support encryption, it doesn’t protect your private files. And use competitors like SpiderOak that do the same exact service but they protect the content of what you’re sharing.

Same thing with companies like Facebook, companies like Google. They’ve made strides to increase the security of their programs and they’re getting better than they have been, but they’re still not safe. These are dangerous services.