Russian Citizen Charged With Hacking LinkedIn

A Russian man has been charged with hacking and stealing information from computers at LinkedIn and other San Francisco Bay Area companies.

The US attorney’s office in San Francisco has announced that a grand jury indicted 29-year-old Yevgeniy Aleksandrovich Nikulin, of Moscow, Russia, a day earlier on charges including computer intrusion and aggravated identity theft.

Prosecutors say Nikulin used a LinkedIn employee’s credentials to access the company’s computers in 2012. Nikulin is also accused of hacking two other companies, Dropbox and Formspring, and conspiring to sell stolen user names, passwords and email addresses of Formspring customers.

He was arrested on 5 October by officials in the Czech Republic and remains there, according to prosecutors. Russian officials have said they are working to prevent his extradition to the United States.

LinkedIn has suggested that Nikulin’s arrest was tied to a 2012 breach of member information. In May, LinkedIn said the 2012 breach resulted in more than 100 millions of its users’ passwords being compromised, vastly more than had been previously thought.

LinkedIn said in a statement that it appreciated the FBI’s ongoing work to “pursue those responsible for the 2012 breach of LinkedIn member information”.

The indictment alleges three unnamed co-conspirators, one of whom offered to sell the stolen Formspring user information to another for 5,500 euros, or about $6,000 in current US currency.

The US has accused Russia of coordinating the theft and disclosure of emails from the Democratic National Committee and other institutions and individuals in the US to influence the outcome of the election. Russia has denied that.

There was no indication the LinkedIn case was connected to that accusation.

Guardian:

« All Tesla’s Cars Will Have Full Self-Drive
Valuable Security Assets Are Human, Not Technical »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

King & Spalding

King & Spalding

King & Spalding is an international law firm with offices in the United States, Europe and the Middle East. Practice areas include Data, Privacy & Security.

Singapore Cybersecurity Consortium

Singapore Cybersecurity Consortium

Singapore Cybersecurity Consortium was created to encourage use-inspired research, training and technology awareness in cybersecurity.

Falanx Cyber

Falanx Cyber

Falanx Cyber provides enterprise-class cyber security services and solutions. We deliver end-to-end cyber capabilities, either as specific engagements or as fully-managed services.

National Information Technology Development Agency (NITDA) - Nigeria

National Information Technology Development Agency (NITDA) - Nigeria

The National Information Technology Development Agency (NITDA) is committed to implementing the Nigerian National Information Technology Policy.

SCADAfence

SCADAfence

SCADAfence offers cutting edge cybersecurity solutions designed to ensure the operational continuity of industrial (ICS/SCADA) networks.

Kivu Consulting

Kivu Consulting

Kivu Consulting combines technical and legal expertise to deliver data breach response, investigative, discovery and forensic solutions worldwide.

Cansure

Cansure

Cansure is a leading insurance provider in Canada offering a broad range of property & casualty insurance solutions including Cyber & Data Breach insurance.

Lepide

Lepide

LepideAuditor is a powerful Data Security Platform that enables you to reduce risk, prevent data breaches and prove regulatory compliance.

Cybersec Infohub

Cybersec Infohub

Cybersec Infohub is a Hong Kong government programme to enhance the exchange of cyber security information with industry and enterprises to jointly defend against cyber attacks.

Stellar Cyber

Stellar Cyber

Stellar Cyber makes Open XDR, the only comprehensive security platform providing maximum protection of applications and data wherever they reside.

Trusted Connectivity Alliance (TCA)

Trusted Connectivity Alliance (TCA)

Trusted Connectivity Alliance is a global, non-profit industry association which is working to enable a secure connected future.

Next Peak

Next Peak

Next Peak provides cyber advisory and operational services based on deep business and national security experience, thought leadership, and a network of front-line defenders.

Appsec Phoenix

Appsec Phoenix

Appsec Phoenix is an end to end vulnerability management platform that focuses on workflows, threat feed, and real time data.

Encova Insurance

Encova Insurance

Encova’s cyber liability coverage protects you and your customers in case of a security breach in your company's data.

Lansweeper

Lansweeper

Lansweeper is an IT Asset Management platform provider helping businesses better understand, manage and protect their IT devices and network.

Deloitte Denmark

Deloitte Denmark

Swift incident management, worldwide support, and advanced defense strategies ensure comprehensive recovery and enterprise security with our IR service.