Discussion:
Florida teen 'mastermind', 17, is among three charged in massive Twitter hack where scammers gained access to high-profile user accounts...
(too old to reply)
Miloch
2020-08-01 16:16:19 UTC
Permalink
...including Barack Obama, Kim Kardashian, Kanye West and Elon Musk

more at
https://www.dailymail.co.uk/news/article-8581665/Florida-teenager-17-charged-masterminding-massive-Twitter-hack.html

*Graham Ivan Clark, 17, was arrested on Friday morning in Tampa, Florida

*Prosecutors say he 'masterminded' largest social media breach in history

*Federal prosecutors also unsealed charges against two other hackers

*Mason 'Chaewon' Sheppard, 19, of the UK was charged with conspiracy

*Nima 'Rolex' Fazeli, 22, of Orlando, Florida, was charged with abetting

*Twitter accounts of dozens of famous personalities were hijacked

Three people have been arrested and charged in a massive Twitter breach earlier
this month that affected dozens of high-profile users.

Graham Ivan Clark, 17, was arrested on Friday morning in Tampa, Florida after a
federal investigation zeroed in on him.

He faces 30 felony charges that will be prosecuted in state court.

The Hillsborough State Attorney's Office called Clark the 'mastermind' of the
July 15 breach, which saw famous Twitter accounts hijacked and used to plead for
donations of bitcoin to a wallet controlled by the attacker.

Authorities say that the hackers behind the attack netted more than $100,000 in
bitcoin through the illegal scheme.

Also on Friday, federal prosecutors announced charges against two alleged
co-conspirators: Mason 'Chaewon' Sheppard, 19, of Bognor Regis in the United
Kingdom, and Nima 'Rolex' Fazeli, 22, of Orlando, Florida.

Sheppard is charged with conspiracy to commit wire fraud, conspiracy to commit
money laundering, and the intentional access of a protected computer.

Fazeli is charged with aiding and abetting the intentional access of a protected
computer.

According to the criminal complaints, Sheppard, aka Chaewon, also used the
moniker 'ever so anxious,' the user name of a participant in the breach who told
the New York Times he lives in the south of England with his mother.

It was not immediately clear whether prosecutors believe Clark was the
mysterious hacker 'Kirk' who initially offered to take over Twitter accounts for
a fee using middlemen on a gamer forum, or whether they suspect he was higher up
the chain, with 'Kirk' working as yet another middleman.

Chat logs obtained by the IRS criminal investigative division showed discussions
that 'Rolex' (Fazeli) and 'ever so anxious' (Sheppard) had with the shadowy
ringleader 'Kirk.'

In the chats, 'Kirk' claims to work at Twitter, and offers to take over any
username for a fee. The original scam of selling stolen usernames appears to
have evolved into the full-scale hijacking of high-profile accounts.

Another participant, known by the moniker 'lol', was also mentioned in the
charging documents, but was not identified by name. The complaints also refer to
an unnamed juvenile suspect.

'There is a false belief within the criminal hacker community that attacks like
the Twitter hack can be perpetrated anonymously and without consequence,' said
U.S. Attorney David L. Anderson for the Northern District of California.

'Today's charging announcement demonstrates that the elation of nefarious
hacking into a secure environment for fun or profit will be short-lived,'
Anderson said.

Although the investigation was led by the FBI and involves federal crimes, Clark
will be prosecuted locally because Florida law allows minors to be charged as
adults in financial fraud cases, when appropriate.

'This 'Bit-Con' was designed to steal money from regular Americans all over the
country, including right here in Florida,' said Hillsborough State Attorney
Andrew Warren. 'This massive fraud was orchestrated right here in our backyard,
and we will not stand for that.'

'This defendant lives here in Tampa, he committed the crime here, and he'll be
prosecuted here,' Warren said.

Hillsborough County Jail records show Clark was booked into jail shortly after
6.30am on Friday.

His home address is in a quiet suburb on the edge of the Northdale Golf & Tennis
Club in northwest Tampa, within the school district of Gaither High School.

Clark had reportedly graduated from high school recently, though it was unclear
from which school.

'Working together, we will hold this defendant accountable,' Warren said.
'Scamming people out of their hard-earned money is always wrong.'

'Whether you're taking advantage of someone in person or on the internet, trying
to steal their cash or their cryptocurrency—it's fraud, it's illegal, and you
won't get away with it,' he said.

Participating in the investigation were the US Attorney's Office for the
Northern District of California, the FBI, the IRS, the Secret Service and the
Florida Department of Law enforcement.

Twitter says the hackers responsible for the breach fooled the social media
company's employees into giving them high-level administrative credentials using
a phone scam.

The company has revealed a few more details about the hack earlier this month,
which it said targeted 'a small number of employees through a phone
spear-phishing attack'.

'This attack relied on a significant and concerted attempt to mislead certain
employees and exploit human vulnerabilities to gain access to our internal
systems,' the company tweeted.

The embarrassing July 15 attack compromised the accounts of some of its most
high profile users, including Tesla CEO Elon Musk and celebrities Kanye West and
his wife, Kim Kardashian West, in an apparent attempt to lure their followers
into sending money to an anonymous bitcoin account.

The tweets falsely offered to send $2,000 for every $1,000 sent to the anonymous
bitcoin address.

After stealing employee credentials and getting into Twitter's systems, the
hackers were able to target other employees who had access to account support
tools, the company said.

The hackers targeted 130 accounts. They managed to tweet from 45 accounts,
access the direct message inboxes of 36, and download the Twitter data from
seven. Dutch anti-Islam MP Geert Wilders has said his inbox was among those
accessed.

Spear-phishing is a more targeted version of phishing, an impersonation scam
that uses email or other electronic communications to deceive recipients into
handing over sensitive information.

Twitter said it would provide a more detailed report later 'given the ongoing
law enforcement investigation.'



*
super70s
2020-08-01 18:55:43 UTC
Permalink
Post by Miloch
...including Barack Obama, Kim Kardashian, Kanye West and Elon Musk
more at
https://www.dailymail.co.uk/news/article-8581665/Florida-teenager-17-charged-masterminding-massive-Twitter-hack.html
*Graham Ivan Clark, 17, was arrested on Friday morning in Tampa, Florida
*Prosecutors say he 'masterminded' largest social media breach in history
*Federal prosecutors also unsealed charges against two other hackers
*Mason 'Chaewon' Sheppard, 19, of the UK was charged with conspiracy
*Nima 'Rolex' Fazeli, 22, of Orlando, Florida, was charged with abetting
*Twitter accounts of dozens of famous personalities were hijacked
Three people have been arrested and charged in a massive Twitter breach earlier
this month that affected dozens of high-profile users.
Graham Ivan Clark, 17, was arrested on Friday morning in Tampa, Florida after a
federal investigation zeroed in on him.
He faces 30 felony charges that will be prosecuted in state court.
The Hillsborough State Attorney's Office called Clark the 'mastermind' of the
July 15 breach, which saw famous Twitter accounts hijacked and used to plead for
donations of bitcoin to a wallet controlled by the attacker.
Authorities say that the hackers behind the attack netted more than $100,000 in
bitcoin through the illegal scheme.
Also on Friday, federal prosecutors announced charges against two alleged
co-conspirators: Mason 'Chaewon' Sheppard, 19, of Bognor Regis in the United
Kingdom, and Nima 'Rolex' Fazeli, 22, of Orlando, Florida.
They all thought they were untouchable. But you do something serious
enough and you'll find out how touchable you are.

Loading...