Four Vietnamese nationals [1] [2] [3] [4] [5] [6] [7] [8] [9], Ta Van Tai [6], Nguyen Viet Quoc [6], Nguyen Trang Xuyen [6], and Nguyen Van Truong [6], have been indicted in the US for their involvement in cyber attacks as part of the FIN9 cybercrime group.
Description
From 2018 to 2021 [4], they hacked into US companies’ networks [4] [6], causing over $71 million in losses [1] [2] [3] [4] [5] [6] [7] [8] [9]. The defendants conducted phishing campaigns [1] [3], supply chain compromises [2] [3], and other methods to steal non-public information [6] [8], employee benefits [1] [4] [5] [8], and funds [1] [4] [8], including gift card data [6], personally identifiable information [2] [3] [6] [8], and credit card details [1] [2] [3] [6] [8]. They redirected digital perks like gift cards to their accounts and sold stolen gift cards to conceal the source of the money [4]. Additionally, the individuals used the stolen information for criminal activities [3], such as setting up hosting servers and opening online accounts at cryptocurrency exchanges [2] [3]. The defendants face charges of conspiracy to commit fraud [2] [3], extortion [2] [3] [4] [5] [6] [8] [9], wire fraud [2] [3] [4] [5] [6] [7] [8] [9], intentional damage to a protected computer [2] [3] [4] [5] [6] [8] [9], money laundering [2] [3] [4] [5] [8] [9], aggravated identity theft [2] [3] [4] [8] [9], and identity fraud [3] [4] [8], with potential prison sentences of up to 45 years [2] [3] [4]. The cybercrime group FIN9 targeted third-party vendors providing critical services or software to their victims [1], gaining access to networks and stealing financial information [1], account credentials [1], employee benefits [1] [4] [5] [8], gift cards [1] [2] [3] [4] [6] [8] [9], and credit card details [1] [2] [3] [6] [8]. The breaches led to significant financial repercussions [7], emphasizing the need for robust cybersecurity measures and the ongoing battle against cybercrime [7]. Organizations are advised to implement preventive measures such as regular security assessments and employee training to mitigate the risks associated with cybercrime [7].
Conclusion
The cyber attacks carried out by the FIN9 cybercrime group have had severe financial impacts on US companies, highlighting the importance of strong cybersecurity measures. It is crucial for organizations to prioritize cybersecurity and take proactive steps to protect their networks and data from cyber threats. The ongoing battle against cybercrime requires constant vigilance and investment in cybersecurity to safeguard against future attacks.
References
[1] https://cyber.vumetric.com/security-news/2024/06/24/four-fin9-hackers-indicted-for-cyberattacks-causing-71m-in-losses/
[2] https://www.redpacketsecurity.com/4-fin9-linked-vietnamese-hackers-indicted-in-71m-u-s-cybercrime-spree/
[3] https://thehackernews.com/2024/06/4-fin9-linked-vietnamese-hackers.html
[4] https://tuoitrenews.vn/news/society/20240624/4-vietnamese-accused-of-cyberattacks-on-us-companies-causing-losses-of-over-71mn/80603.html
[5] https://vietnamnews.vn/society/1658051/four-vietnamese-indicted-in-us-for-71m-crypto-hacking-scandal.html
[6] https://vietnamnet.vn/en/four-vietnamese-nationals-face-charges-in-71-million-in-us-cyber-attacks-2294616.html
[7] https://www.krofeksecurity.com/index.php/2024/06/25/unveiling-the-71m-cybercrime-spree-vietnamese-hackers-with-fin9-connections-indicted/
[8] https://vietnam-aujourdhui.info/2024/06/25/4-vietnamese-accused-of-cyberattacks-in-us-causing-71m-in-damages/
[9] https://hackyourmom.com/en/novyny/u-ssha-predyavleno-zvynuvachennya-vyetnamskym-chlenam-hakerskoyi-grupy-fin9/
