U.S. Government Indicts 5 Global Hackers in Ring Targeting Retailers

Business, News, Retail IT
Hacker break digital lock

Federal prosecutors have charged one Ukrainian and four Russian hackers with stealing credit card and other financial information from companies including J.C. Penney, Carrefour, 7-Eleven, Jet Blue Airways and Dow Jones.

The indictment that was unsealed in New Jersey on July 25 details a computer crime spree that began in 2005 and netted hundreds of millions of dollars, a sum sufficient to make it  “possibly the biggest hacking scheme ever prosecuted by the U.S. government” according to government sources quoted in a Wall Street Journal article about the case.

The indictment details how the hackers scouted retailers in 2007 and 2008 to determine the types of payment processing systems in use. The hackers penetrated corporate networks and installed software that allowed them back door access the systems later.

According to the same WSJ article, the hackers used leased computers in New Jersey, Latvia, the Bahamas, Panama and other places to carry out their attacks and even set up Google alerts to let them know when the data breeches had become news so that they could stay ahead of law enforcement agencies.

The five persons named in the indictment as co-conspirators face a variety of charges that include operating a computer hacking conspiracy and conspiracy to commit wire fraud. The five are Alexandr Kalinin, Vladimir Drinkman, Dmitriy Smilianets, Roman Kotov and Mikhail Tytikov. Smilianets is in U.S. custody and Drinkman is in custody in the Netherlands pending extradition, but the other three remain at large and may be in Russia. The five allegedly stole more than 160 million credit and debit card numbers and caused a payment processor to lose of more than 200M.

The WSJ reports that Mr. Kalinin has been charged by the U.S. District Attorney in Manhattan with being a part of two separate scams, one to hack NASDAQ servers and another to steal bank account information for 800,000 accounts.

Retailers are facing increasingly frequent and costly attacks by hackers from Eastern Europe and across the globe. The costs of a data breach in retail IT can be substantial and include loss of reputation, revenue, trust and fines from card companies and regulators.

Learn some of the ways that retailers are achieving better data security and IT asset management from this on demand briefing: Retail IT 2013: Data Security and PCI Compliance.

Art of business man riding a rising arrow with a telescope in hand

5 Steps to a Successful Mid-year Goal Check-in

The day-to-day demands of running an MSP can keep everyone quite busy, whether they’re putting out fires or upgrading aRead More

2019 Connect IT Techie Awards Presentation

Connect IT Global: Day 3 Recap (It’s a Wrap!)

What a conference it’s been! Building on the success of previous Kaseya conferences, this first-ever Connect IT Global was THERead More

Connect IT Lighted Sign

Connect IT Global: Day 2 Recap

For attendees at Connect IT Global, Day 2 was full of opportunities to learn and be excellent across three keyRead More

IT Glue A Kaseya Company

Connect IT Global: IT Glue Offers Limited Release of Network Glue for Powerful Network Discovery, Documentation, and Diagramming

Announced at Connect IT Global, Network Glue automates capturing, displaying, and refreshing network device information inside of IT Glue accounts. NetworkRead More

Connect IT Asia-Pacific - Don't Miss the Premier IT Management Event of the Year - Join Us in Sydney 1-3 October 2019 - Register Now