SSNDOB, a group of Deep Web identity thieves who traffic in stolen personal information, were reported earlier this week to have been hacked themselves. But that hasn’t stopped them from striking again.
Whereas earlier they cracked information from data brokerages like Lexis/Nexis and Dun & Bradstreet, this time security researcher Brian Krebs discovered they also struck a congressional non-profit called the National White Collar Crime Center, or NW3C, drawing out 2.7 million records from an infected server between May and August of this year.
The NW3C’s mission is to provide “training, investigative support and research to agencies and entities involved in the prevention, investigation and prosecution of economic and high-tech crime.” The investigative section “has no investigative authority but can provide analytical assistance and perform public database searches.”
SSNDOB used a small but very effective botnet to assist in their information theft. When Krebs looked further at “the Web server used to control that collection of hacked PCs shows that the attackers also had at least one infected system for several months this summer inside of the NW3c.”
The NW3C partners with the FBI on IC3, the Internet Crime Complaint Center, which accepts cybercrime complaints for investigation through its website, so the quality of the information, and the level of privacy desired for it, must be high.
The name of the server SSNDOB compromised was “data.” They apparently broke in through a public-facing server designed to handle incoming virtual private network (VPN) communications.
“Organizations frequently set up VPNs,” Krebs notes, “so that their remote employees can create an encrypted communications tunnel back to an otherwise closed network.”
The attackers used a tool designed to exploit weaknesses in Adobe’s ColdFusion Web application platform, utilizing exploits that, Adobe says, are patched in the latest versions.
The earlier story on SSNDOB explored the theft of stolen information by thieves from thieves. Ironically, this episode details the theft by criminals of information on other criminals.
Homeless man plays best cover of Styx's 'Come Sail Away' you've ever heard
Are we sure this isn't really Dennis DeYoung?30k
Channing Tatum can vogue better than you
It's hard to look away.5.7k
Kids reacting to the gay marriage decision is everything
We could all learn something from this video.5.1k
Japanese woodblock prints recreate iconic Star Wars scenes
Your bank account may cry out and be suddenly silenced.
The 3 biggest questions heading into the ESL ESEA final
The first edition of the ESL ESEA Pro League is coming to a head this weekend with $250,000 on the line.27