The Incident Backstory
A recently unsealed US indictment detailed how the GozNym cybercrime group was behind $100 million in damages. The hackers specifically infected victims’ computers with GozNym malware to gain access to and steal money from their online bank accounts:
Within this indictment was a list of 13 SMB victims. As I read each victim’s story, I couldn’t help but wonder how many of these businesses felt they were adequately protected or simply “too small” to be targeted by hackers. Unfortunately, their bank accounts now tell a different story:
Victim 1 — Asphalt & Paving Business
Full Story: Starts on page 20 of the indictment.
Useful Security Layers: Breach Detection, Multi-factor Authentication, Anti-spam, Anti-phishing Policies, Security Awareness Education, DNS Filtering, Antivirus
Victim 2 — Law Firm
Full Story: Starts on page 21 of the indictment.
Useful Security Layers: Breach Detection, Multi-factor Authentication, Anti-spam, Anti-phishing Policies, Security Awareness Education, DNS Filtering, Antivirus
Victim 3 — Church
Full Story: Starts on page 23 of the indictment.
Useful Security Layers: Breach Detection, Multi-factor Authentication, Anti-spam, Anti-phishing Policies, Security Awareness Education, DNS Filtering, Antivirus
Victim 4 — Recreational Program
Full Story: Starts on page 24 of the indictment.
Useful Security Layers: Breach Detection, Multi-factor Authentication, Anti-spam, Anti-phishing Policies, Security Awareness Education, DNS Filtering, Antivirus
Victim 5 — Medical Equipment Distributor
Full Story: Starts on page 25 of the indictment.
Useful Security Layers: Breach Detection, Multi-factor Authentication, Antivirus
Victim 6 — Furniture Business
Full Story: Starts on page 26 of the indictment.
Useful Security Layers: Breach Detection, Multi-factor Authentication, Antivirus
Victims 7–13
Dive into the indictment to find several more of these stories ready to become awesome case studies and whitepapers!
Industries Affected: Electrical Safety Device Reseller, Contracting Business, Cold Pack Shipping Provider, Bolt Manufacturer, Casino, Thoroughbred Horse Breeder/Farm, and a Law Office.
Full Story: Check out pages 27–31 of the indictment.
Learn how to demonstrate these attacks!
There’s nothing better than showing prospects a live hacking demonstration. Join the Huntress team at DattoCon19 on June 17th in San Diego where we teach a no-FUD Hacking Windows course (only basic IT skills needed).
