Romania’s Directorate for Investigating Organized Crime and Terrorism (DIICOT) has successfully detained three individuals who attempted to sell information stolen from a Cyprus-based brokerage. Three individuals organized activities earlier this year to hack a data cache at an unnamed brokerage, making off with its CRM database management platform. The stolen information featured a wide range of sensitive disclosures, including client data such as names, addresses, emails, telephone numbers, etc. An apparent deal had been brokered for the sale of this information.
9,000 contacts compromised
Upon acquiring this information, all three individuals entered into negotiations to sell the stolen data, including €80,000 for upwards of 9,000 contacts.
This effort was undertaken in parallel with an attempt to elicit a lengthy cache of computer data to an unknown segment of potential suitors earlier this year between January and April 2017. All of this was made possible via a stolen CRM, which effectively housed an entire confidential database that the individuals used to Leverage the highest offer. Evidence of this scheme surfaced in July 2017, when a prospective client of the brokerage had been contacted – it is unknown if this individual was linked as a potential buyer for the information.
However, it was through this individual that a portion of the data was disclosed, thereby establishing a link back to the brokerage company – the individual then informed the Cypriot group of its intention to sell the information, which proved to be instrumental in bringing the thieves to justice.
DIICOT takes action
Earlier this month, a series of phone calls also proved important in stifling the overall sale of the stole data. The DIICOT became aware of the fraudulent activity and apprehended them.
Despite bringing the individuals into custody, a limited part of the database, including 2,200 contacts and confidential data, was successfully sold for a sum of €13.8,000 and paid to all three members of the group. With each individual in custody, a number of domestic searches were undertaken earlier this week, successfully recovering an undisclosed number of data and storage devices, mobile phones, and computer systems.
Romania’s Directorate for Investigating Organized Crime and Terrorism (DIICOT) has successfully detained three individuals who attempted to sell information stolen from a Cyprus-based brokerage. Three individuals organized activities earlier this year to hack a data cache at an unnamed brokerage, making off with its CRM database management platform. The stolen information featured a wide range of sensitive disclosures, including client data such as names, addresses, emails, telephone numbers, etc. An apparent deal had been brokered for the sale of this information.
9,000 contacts compromised
Upon acquiring this information, all three individuals entered into negotiations to sell the stolen data, including €80,000 for upwards of 9,000 contacts.
This effort was undertaken in parallel with an attempt to elicit a lengthy cache of computer data to an unknown segment of potential suitors earlier this year between January and April 2017. All of this was made possible via a stolen CRM, which effectively housed an entire confidential database that the individuals used to Leverage the highest offer. Evidence of this scheme surfaced in July 2017, when a prospective client of the brokerage had been contacted – it is unknown if this individual was linked as a potential buyer for the information.
However, it was through this individual that a portion of the data was disclosed, thereby establishing a link back to the brokerage company – the individual then informed the Cypriot group of its intention to sell the information, which proved to be instrumental in bringing the thieves to justice.
DIICOT takes action
Earlier this month, a series of phone calls also proved important in stifling the overall sale of the stole data. The DIICOT became aware of the fraudulent activity and apprehended them.
Despite bringing the individuals into custody, a limited part of the database, including 2,200 contacts and confidential data, was successfully sold for a sum of €13.8,000 and paid to all three members of the group. With each individual in custody, a number of domestic searches were undertaken earlier this week, successfully recovering an undisclosed number of data and storage devices, mobile phones, and computer systems.
