Former Ubiquiti Employee Pleads Guilty To Attempted Extortion Scheme (theverge.com)
- Reference: 0170261091
- News link: https://yro.slashdot.org/story/23/02/03/1812207/former-ubiquiti-employee-pleads-guilty-to-attempted-extortion-scheme
- Source link: https://www.theverge.com/2023/2/3/23584414/ubiquiti-developer-guilty-extortion-hack-security-breach-bitcoin-ransom
> Nickolas Sharp, 37, worked as a senior developer for Ubiquiti between 2018 and 2021 and took advantage of his authorized access to Ubiquiti's network to steal gigabytes worth of files from the company during an orchestrated security breach in December 2020.
>
> Prosecutors said that Sharp used the Surfshark VPN service to hide his home IP address and intentionally damaged Ubiquiti's computer systems during the attack in an attempt to conceal his unauthorized activity. Sharp later posed as an anonymous hacker who claimed to be behind the incident while working on an internal team that was investigating the security breach. While concealing his identity, Sharp attempted to extort Ubiquiti, sending a ransom note to the company demanding 50 Bitcoin (worth around $1.9 million at that time) in exchange for returning the stolen data and disclosing the security vulnerabilities used to acquire it. When Ubiquiti refused the ransom demands, Sharp leaked some of the stolen data to the public.
The FBI was prompted to investigate Sharp's home around March 24th, 2021, after it was discovered that a temporary internet outage had exposed Sharp's IP address during the security breach.
Further reading :
[2]Ubiquiti Files Case Against Security Blogger Krebs Over 'False Accusations' ;
[3]Former Ubiquiti Dev Charged For Trying To Extort His Employer .
[1] https://www.theverge.com/2023/2/3/23584414/ubiquiti-developer-guilty-extortion-hack-security-breach-bitcoin-ransom
[2] https://yro.slashdot.org/story/22/04/02/0559255/ubiquiti-files-case-against-security-blogger-krebs-over-false-accusations
[3] https://it.slashdot.org/story/21/12/03/0033238/former-ubiquiti-dev-charged-for-trying-to-extort-his-employer
Krebs (Score:2)
This whole thing is a real stain for Brian Krebs.
Re: (Score:1)
How's he involved? Does he recommend Unifi or something?
Re: (Score:2)
He broke the story of how Ubiquiti was hacked. Except it wasn't hacked at all, there was a (former) insider attack.
[1]https://krebsonsecurity.com/20... [krebsonsecurity.com]
[2]https://www.theregister.com/20... [theregister.com]
[1] https://krebsonsecurity.com/2022/08/final-thoughts-on-ubiquiti/
[2] https://www.theregister.com/2022/03/30/ubiquiti_brian_krebs/
Re: (Score:2)
I thought he did hack it using insider knowledge and leverage?
Like knowing what is running what, and where the goods are, and using that from the outside VPN to actually hack it?
Such as knowing a random server that hasn't patched for log4j and others yet, then exploiting it, and knowing where to hop from there.
Re: (Score:2)
A rogue sys admin can do lots of bad things but that is not exactly a hack. Lots of organizations are subject to damage from a rogue sys admin, most in fact.
was bound to get caught (Score:2)
The guy was using a commercial VPN service?!? Like that is impervious to search warrant.. I'm not even going to list the thousands of freely-available ways this criminal could have routed their attack to be far less traceable. The evidence is here that other mistakes were doubtlessly going to foil this ill-conceived caper.
The calls are coming from inside the house! (Score:2)
Glad they caught him.