An indictment unsealed today charges four Vietnamese nationals with carrying out a series of cyberattacks on American companies, causing more than $71 million in damages, U.S. Attorney Philip R. Seller said.
The individuals prosecuted are Ta Van Tai, using the nicknames “Quynh Hoa” and “Bich Thuy”; Nguyen Viet Quoc – “Tien Nguyen”; Nguyen Trang Xuyen and Nguyen Van Truong – “Chung Nguyen”, are members of the international cybercrime group “FIN9”.
From May 2018 to October 2021, the defendants allegedly hacked the computer networks of U.S. companies, stealing nonpublic information, employee benefits, and money.
“The FIN9 defendants are notorious international hackers who, over the years, have allegedly used phishing campaigns, supply chain attacks, and other hacking methods to steal millions of dollars from victims. ”, Seller stated, emphasizing that the US Department of Justice successfully identified these hackers despite their efforts to hide their technology.
FBI Special Agent James E. Dennehy noted:
“Cyber actors hide in the virtual world, hiding in a space that most people cannot see and do not understand. Even if these hackers from the FIN9 group are so smart that they are confident they can disguise themselves successfully, they cannot hide the fact that they stole data from victim companies.”
The defendants gained unauthorized access to the victim companies’ networks through phishing campaigns and supply chain attacks, then stole nonpublic information, employee benefits, and payments. money. This can include sensitive company data, financial information, and possibly personal data of employees or customers.
The defendants redirected employee digital benefits, such as gift cards, to accounts they controlled and stole gift card information from some victims, showing centralization for financial gain through both direct theft and diversion of corporate resources.
*Phishing involves emails or messages that trick recipients into obtaining sensitive information or downloading malware. Supply chain attacks exploit vulnerabilities in a company’s suppliers or partners to gain access to systems.
Annie
According to Shorenewsnetwork
