Man charged with Ubiquiti information breach and extortion was worker assigned to analyze hack
A former worker of Ubiquiti Networks has been arrested and charged in reference to a hack that stole gigabytes of information and tried to extort US $2 million from the agency.
36-year-old Nickolas Sharp, of Portland, Oregon, who was employed by networking producer Ubiquiti as a software program engineer in its cloud division between August 2018 and March 2021, is accused of stealing gigabytes of confidential information from the agency’s AWS servers and GitHub repositories in December 2020.
The primary the world knew of the safety breach was in January 2021, when Ubiquiti suggested customers to vary their account passwords and allow two-factor authentication (2FA).
In keeping with an unsealed Division of Justice indictment in opposition to Sharp, the software program engineer is claimed to have used a Surfshark VPN account to cover his IP tackle when logging into Ubiquiti’s AWS and GitHib accounts with the intention to steal confidential information.
After the breach, Sharp is claimed to have posed as an nameless hacker, demanding a ransom of fifty Bitcoin (roughly price US $1.9 million on the time) in alternate for the return of the stolen information and particulars of the vulnerability he allegedly claimed to have exploited to entry the corporate’s programs.
When Ubiquiti refused to pay the ransom, Sharp is alleged to have printed a portion of the stolen recordsdata on-line, and tried to break the agency’s fame by contacting the media posing as a whistleblower, maligning its safety and inflicting the enterprise’s share worth to fall 20% – a loss in market capitalisation of over US $4 billion.
Briefly, the US Division of Justice claims that:
- Sharp took benefit of his privileged entry as an worker of Ubiquiti to steal gigabytes of information, and delete logs that might have uncovered his identification in a subsequent investigation.
- Sharp posed as an nameless hacker to demand a ransom price virtually US $2 million be paid.
- Sharp anonymously contacted media shops with damaging information tales about how Ubiquiti had dealt with the information breach, claiming a vulnerability was current in its programs.
In maybe the last word irony, Sharp was assigned to the corporate’s incident response staff investigating the hack – Ubiquiti clearly unaware on the time of his alleged involvement.
In keeping with the FBI, for “one fleeting occasion” through the exfiltration of information within the lifeless of the night time, Sharp’s Surfshark VPN didn’t correctly masks his exercise after an web outage at his house and his actual IP tackle was logged.
In March 2020, FBI brokers duly executed a search warrant at Sharp’s house, seizing laptop tools for digital forensic evaluation.
Sharp faces expenses of hacking, extortion, wirefraud, and mendacity to an FBI officer. If discovered responsible, he may withstand 37 years in jail.
All corporations could be smart to keep in mind that maybe the most important menace of all doesn’t come from exterior hackers, however from the employees you will have employed and trusted to function your laptop programs and work together along with your information.