![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
paserbyp
The FBI released information this week on the arrest of Egor Igorevich Kriuchkov, a 27-year-old Russian citizen, who they claim was part of a group who attempted to extort millions of dollars from a company in Nevada, which has now been identified as Tesla.According to the complaint, Kriuchkov traveled to the US in July on a tourist visa and made contact with a Russian-speaking employee at Tesla Gigafactory Nevada.
He met the employee, who remains anonymous in the complaint, several times socially before making him a proposition to pay him to help introduce malware in Tesla’s internal computer system in order to extract corporate data and affect Tesla’s operations.
Kriuchkov alleged that he was representing a group that would then arrange a ransom with Tesla in order to not release the information and stop affecting its operations.
The employee didn’t refuse, but he immediately informed Tesla, who in turn informed the FBI.
The FBI launched a sting operation with the employee who wore a wire and shared text communications with Kriuchkov as they were negotiating the terms of the malware attack.
The employee and Kriuchkov met several times throughout August to plan the attack and the payment of the employee’s fee.
Interestingly, through the cooperation with the Tesla employee, the FBI was able to obtain information about previous attacks from this group.
They didn’t confirm which other companies were involved, but it was recently reported that CWT Group paid $4.5 million for a similar ransomware attack in July(More details: https://uk.reuters.com/article/uk-cyber-cwt-ransom/payment-sent-travel-giant-cwt-pays-45-million-ransom-to-cyber-criminals-idUKKCN24W26P).
Ultimately, Kriuchkov and another Russian-speaking individual who was not named in the complaint agreed to pay the employee $1 million to deliver the malware in a Tesla computer.
He was leaving the US from Los Angeles on August 22 when he was arrested by the FBI.
no subject
Date: 2020-08-29 11:25 am (UTC)Mission: Impossible
Date: 2020-08-29 01:52 pm (UTC)