Hacking group The Dark Overlord threatens to scare sensitive documents from 9/11 • forbes.com

0
49

<div _ngcontent-c14 = "" innerhtml = "

The UK's National Cyber ​​Security Center warns that all major organizations may be targeted by The Dark Overlord hacking group. This is a close-up of code on a computer screen for the Apache Struts framework, which has been exploited by hackers using a remote code execution exploit to steal personal information from millions of people at the central office. Equifax Credit Processor, October 2, 2017. (Photo by Smith Collection / Gado / Getty Images)Getty

Notorious hacking group The Dark Overlord threatens to disclose extremely sensitive documents regarding the attacks of September 11, 2001. He says he will publish the material by capitalizing on various theories of conspiracy around the September 11 attacks, unless its Ransom demands are not met.

according to Motherboard, the group claims to have violated several insurers and law firms, including Hiscox Syndicates Ltd., Lloyds of London and Silverstein Properties.

In a statement posted on PasteBin, The Dark Overlord said: "When major incidents such as the WTC 911 occur, some of the litigation must involve SSI (Sensitive Security Information) and SCI (Special Compartment Information). [sic] FBI, CIA, TSA, FAA, DOD and others in evidence.

"But of course, this can not be made public for fear of jeopardizing the security of a country. They have therefore temporarily released these documents to the law firms involved in the dispute with the strict request that they be destroyed after their use and that they remain highly protected. and confidential to use only behind closed doors. "

"However, the humans are not perfect and many of these documents are not destroyed, and when the lord of the president comes hack all these law firms, investment banks and global insurers, we discover the The juiciest secrets that a government can offer. "

The group announced that it would disclose "the first few documents as evidence of its wealth on the famous KickAss Dark Internet hacker forum" and invited terrorist groups and countries such as China and China. Russia to make a purchase.

Who is the lord of darkness and what is his tactic?

At first, the group of hackers stole the data that he had offered for sale, but his attacks quickly turned to extortion. Then, Dark Overlord took the habit of hacking leading organizations and demanding money in exchange for not disclosing information in the public domain. As seems to be the case in this last "announcement", the group tends to divulge newspaper excerpts to the media in order to compel the victim to pay.

Previously, the group had targeted healthcare facilities, schools and multimedia production companies, including a plastic surgery clinic and a Hollywood production studio based in London. The group also leaked an entire season of Netflix's Orange Is The New Black.

The Los Angeles based WestPark Capital investment bank is another extortion attempt. In case of failure, the group disclosed information, including non-disclosure agreements, reports and contracts. These data have been confirmed as legitimate.

according to The National Cyber ​​Security Center (NCSC) of the UK, any organization that processes sensitive personal information – such as medical institutions and law firms – is at greater risk of being targeted by The Dark Overlord. He says that such an organization "has a special duty of care to its customers because of the risk of severe emotional distress if the customer's data is made public."

However, he points out that while this group often provides evidence of stolen data, "the volume and sensitivity of the data can be exaggerated to maximize impact."

The last offense

It is therefore likely that the volume and sensitivity of data stolen in this latest piracy has been exaggerated. The post of PasteBin, as it is typical of this group, aims to extort money. The Dark Overlord encourages "dozens of law firms" and others to contact their email and request that documents and materials be removed from the publication. "However, you will pay us," the message said.

Experts agree that the material claimed by Dark Overlord does not really change the game. Ian Thornton-Trump, head of cybersecurity at Amtrust International, said the latest incident was like "cybercrime".

"The fact that the companies are named makes me want to believe that they refused to pay the ransom, so it is a means of pressure used by The Dark Overlord to force the problem of the ransom."

Thornton-Trump also asks if the group has sold too much "sensitive" documents, saying: "Many years later, after the events of September 11, the documents in question may have their security clearance expire during next six years. Much has already been revealed by journalists and writers. "

He adds, "This really highlights the importance of security checks. In the end, this is an excellent example of a threat actor for blue teams and red teams to emulate. "

At the same time, explains Jake Moore, an expert in computer security at ESET UK: "The problem with the digital ransom is that it is virtually impossible for the recipient to know if the call for ransom has a substance – unless well sure you know that there has been a violation or not. concerned about the level of security protecting your most delicate assets. "

He advises companies never to pay ransom. "They may or may not deliver the goods, they may have a copy and may have already sold or donated it. In the meantime, because of the nature of digital theft, they may not even be the original owner of the stolen data. "

">

The UK's National Cyber ​​Security Center warns that all major organizations may be targeted by The Dark Overlord hacking group. This is a close-up of code on a computer screen for the Apache Struts framework, which has been exploited by hackers using a remote code execution exploit to steal personal information from millions of people at the central office. Equifax Credit Processor, October 2, 2017. (Photo by Smith Collection / Gado / Getty Images) Getty

Notorious hacking group The Dark Overlord threatens to disclose extremely sensitive documents regarding the attacks of September 11, 2001. He says he will publish the material by capitalizing on various theories of conspiracy around the September 11 attacks, unless its Ransom demands are not met.

according to Motherboard, the group claims to have violated several insurers and law firms, including Hiscox Syndicates Ltd., Lloyds of London and Silverstein Properties.

In a statement posted on PasteBin, The Dark Overlord said: "When major incidents such as the WTC 911 occur, some of the litigation must involve SSI (Sensitive Security Information) and SCI (Special Compartment Information). [sic] FBI, CIA, TSA, FAA, DOD and others in evidence.

"But of course, this can not be made public for fear of jeopardizing the security of a country. They have therefore temporarily released these documents to the law firms involved in the dispute with the strict request that they be destroyed after their use and that they remain highly protected. and confidential to use only behind closed doors. "

"However, the humans are not perfect and many of these documents are not destroyed, and when the lord of the president comes hack all these law firms, investment banks and global insurers, we discover the The juiciest secrets that a government can offer. "

The group announced that it would disclose "the first few documents as evidence of its wealth on the famous KickAss Dark Internet hacker forum" and invited terrorist groups and countries such as China and China. Russia to make a purchase.

Who is the lord of darkness and what is his tactic?

At first, the group of hackers stole the data that he had offered for sale, but his attacks quickly turned to extortion. Then, Dark Overlord took the habit of hacking leading organizations and demanding money in exchange for not disclosing information in the public domain. As seems to be the case in this last "announcement", the group tends to divulge newspaper excerpts to the media in order to compel the victim to pay.

Previously, the group had targeted healthcare facilities, schools and multimedia production companies, including a plastic surgery clinic and a Hollywood production studio based in London. The group also leaked an entire season of Netflix's Orange Is The New Black.

The Los Angeles based WestPark Capital investment bank is another extortion attempt. In case of failure, the group disclosed information, including non-disclosure agreements, reports and contracts. These data have been confirmed as legitimate.

according to The National Cyber ​​Security Center (NCSC) of the UK, any organization that processes sensitive personal information – such as medical institutions and law firms – is at greater risk of being targeted by The Dark Overlord. He says that such an organization "has a special duty of care to its customers because of the risk of severe emotional distress if the customer's data is made public."

However, he points out that while this group often provides evidence of stolen data, "the volume and sensitivity of the data can be exaggerated to maximize impact."

The last offense

It is therefore likely that the volume and sensitivity of data stolen in this latest piracy has been exaggerated. The post of PasteBin, as it is typical of this group, aims to extort money. The Dark Overlord encourages "dozens of law firms" and others to contact their email and request that documents and materials be removed from the publication. "However, you will pay us," the message said.

Experts agree that the material claimed by Dark Overlord does not really change the game. Ian Thornton-Trump, head of cybersecurity at Amtrust International, said the latest incident was like "cybercrime".

"The fact that the companies are named makes me want to believe that they refused to pay the ransom, so it is a means of pressure used by The Dark Overlord to force the problem of the ransom."

Thornton-Trump also asks if the group has sold too much "sensitive" documents, saying: "Many years later, after the events of September 11, the documents in question may have their security clearance expire during the next six years … Much has already been revealed by journalists and writers. "

He adds, "This really highlights the importance of security checks. In the end, this is an excellent example of a threat actor for blue teams and red teams to emulate. "

At the same time, explains Jake Moore, an expert in computer security at ESET UK: "The problem with the digital ransom is that it is virtually impossible for the recipient to know if the call for ransom has a substance – unless well sure you know that there has been a violation or not. concerned about the level of security protecting your most delicate assets. "

He advises companies never to pay ransom. "They may or may not deliver the goods, they may have a copy and may have already sold or donated it. In the meantime, because of the nature of digital theft, they may not even be the original owner of the stolen data. "