Slashdot Mirror

← Back to Stories (view on slashdot.org)

How an International Hacker Network Turned Stolen Press Releases Into $100 million (theverge.com)

Posted by msmash on from the inside-baseball dept.

Isobel Koshiw, reporting for The Verge: At a Kiev nightclub in the spring of 2012, 24-year-old Ivan Turchynov made a fateful drunken boast to some fellow hackers. For years, Turchynov said, he'd been hacking unpublished press releases from business newswires and selling them, via Moscow-based middlemen, to stock traders for a cut of the sizable profits. Oleksandr Ieremenko, one of the hackers at the club that night, had worked with Turchynov before and decided he wanted in on the scam. With his friend Vadym Iermolovych, he hacked Business Wire, stole Turchynov's inside access to the site, and pushed the main Moscovite ringleader, known by the screen name eggPLC, to bring them in on the scheme. The hostile takeover meant Turchynov was forced to split his business. Now, there were three hackers in on the game.

Newswires like Business Wire are clearinghouses for corporate information, holding press releases, regulatory announcements, and other market-moving information under strict embargo before sending it out to the world. Over a period of at least five years, three US newswires were hacked using a variety of methods from SQL injections and phishing emails to data-stealing malware and illicitly acquired login credentials. Traders who were active on US stock exchanges drew up shopping lists of company press releases and told the hackers when to expect them to hit the newswires. The hackers would then upload the stolen press releases to foreign servers for the traders to access in exchange for 40 percent of their profits, paid to various offshore bank accounts. Through interviews with sources involved with both the scheme and the investigation, chat logs, and court documents, The Verge has traced the evolution of what law enforcement would later call one of the largest securities fraud cases in US history.

34 comments

  1. Psst... want a stock tip? by Anonymous Coward · · Score: 0

    buy TSLA shorts. $420 a share was the product of ambian + coke + weed fueled bender. Investment bankers are pushing a recapitalization at $100-$150 a share.

    1. Re: Psst... want a stock tip? by Anonymous Coward · · Score: 0

      You forgot autism but the rest of your post is spot on.

    2. Re:Psst... want a stock tip? by cheesybagel · · Score: 1

      Actually the man himself said the stock price was too high. So at least he's lucid enough for that.
      What he doesn't appreciate is the turbulence of the stock market with his stock.

  2. Only illegal if "executive" is not in your title by damn_registrars · · Score: 1, Informative

    At least, in the USA it is that way. Really all you need to do to know what's going to happen here is watch to see what top executives are doing with their stocks. If you can get advance notice on a CEO dumping stock, you'll be way ahead of the rest of the suckers.

    --
    Damn_registrars has no butt-hole. Damn_registrars has no use for a butt-hole.
  3. Re: Only illegal if "executive" is not in your tit by Anonymous Coward · · Score: 1

    Don't forget Congress. They tried to pass a bill to curtail insider trading among reps, it was watered down to homeopathic levels.

  4. Re: Only illegal if "executive" is not in your tit by Anonymous Coward · · Score: 1

    Republican controlled Congress, yes. "The Swamp that aww shucks just can't seem to drain the felonies out"

  5. Re:Only illegal if "executive" is not in your titl by Quince+alPillan · · Score: 2

    A CEO or other top executive dumping stock ahead of a major announcement is called insider trading and illegal.

  6. Re: Only illegal if "executive" is not in your tit by bluefoxlucid · · Score: 1

    Stop Trading On Congressional Knowledge? They passed that. I was subject to it for a brief period of several months.

    --
    Support my political activism on Patreon.
  7. The Wire by A10Mechanic · · Score: 3, Insightful

    This was the plot of the movie "The Sting", with Robert Redford & Paul Newman. Mode of transmission may have changed though...

    1. Re:The Wire by Mr.+Dollar+Ton · · Score: 1

      It was a minor subplot of "The Count of Monte Cristo", a book written in 1844.

  8. Re: Only illegal if "executive" is not in your tit by Anonymous Coward · · Score: 1

    Someone mod to +5 funny. Funniest shit I heard all week.

  9. Re:Only illegal if Legislator isn't in your title by PPH · · Score: 1

    FTFY

    --
    Have gnu, will travel.
  10. Plant fake info ... by PPH · · Score: 2

    ... in your newswire database.

    "GE To Declare Bankruptcy", "Lockheed Sold to Chinese", etc. Sit back and watch idiots buy fake info and lose billions.

    --
    Have gnu, will travel.
    1. Re:Plant fake info ... by originalGMC · · Score: 1

      please please please do this

    2. Re:Plant fake info ... by Solandri · · Score: 1
      This is actually the quasi-solution to a *lot* of problems. e.g.
      • If you've got a database full of your employee's info, populate it with made-up info for a bunch of fake employees. When you use the database, use some secret method to distinguish which employees are real (maybe the sum of their employee ID number and birthdate is divisible by 197). If you ever get hacked and the database is stolen, good luck to the hackers selling a database where 99.5% of the info is fake.
      • If you're a defense contractor, add a bunch of made-up project files for fake programs, complete with plans, designs, drawings, etc. If a foreign government manages to break in and steal them, they'll still have to try to figure out what's real and what's fake.
      • For press releases, it's a lot simpler. You compose the press release and pre-upload it for release after an embargo date. But the salient details are obfuscated. "Our net income for this quarter were [ $1 million dollars | $100,000 | a loss of $500,000 ]." "We will be [ constructing a new facility in Phoenix, AZ | purchasing and renovating a facility in Boise, ID | demolishing our warehouse in Denver, CO ]" etc. When the embargo is up, instead of just automatically releasing the pre-prepared press release, you simply edit out the fake info then give the OK to release it.

      Security through obscurity isn't true protection. But it can make the thieves' jobs a lot harder.

    3. Re:Plant fake info ... by Anonymous Coward · · Score: 0

      They did.

      Someone found somewhere an article from many years previously on some podunk little's town's newspaper website that said a) UAL (United Airlines) declares bankruptcy and b) didn't have a date line on it.

      The news was perfectly accurate when it was written, then it disappeared into the newspaper's online archives. Much (many years) later someone found it, then hired a [many?] clickbot[s] to click over and over on that particular article. Eventually, the number of clicks brought it up on the then present day's website as 'most popular', and from there it got scraped by thousands of high-frequency trading bots, who tagged onto 'UAL' and 'bankruptcy' and promptly sold everything they could.

      The stock plummeted, losing vast value in a matter of hours, but then rebounded. Still, someone made enormous fortunes selling short UAL there... by hijacking the newswire.

      And people wonder why some people consider the stock market a) a lottery and b) rigged.

      AC

    4. Re:Plant fake info ... by PPH · · Score: 1

      In the UAL case, many of the people who profited or got hurt were innocent. Stupid, for not checking out the story. My idea is to leave an unreleased story somewhere that only would be read by people stealing press releases. But in the latter case, it's more likely to fool the greedy as they don't have second sources for the news they acquired.

      --
      Have gnu, will travel.
  11. Re:Only illegal if "executive" is not in your titl by jbmartin6 · · Score: 1

    You can get advance notice, since at that level major stock sales are scheduled ahead of time and in many cases have to be cleared with the SEC. Of course, since it is all scheduled well ahead of time it generally has no impact on the stock price. Which is the point.

    --
    This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.
  12. Re:Only illegal if "executive" is not in your titl by thomn8r · · Score: 1

    The story isn't about news of stock sales, it's about selling not-yet-released news about the company in general that could move the market one way or the other.

  13. Re: Only illegal if "executive" is not in your tit by Anonymous Coward · · Score: 1

    No, you weren't. It was watered down significantly within a week by another law and had you actually been subject to it you would know that.

  14. Re:Only illegal if "executive" is not in your titl by Anonymous Coward · · Score: 0

    I googled "ceo convicted of insider trading" and got lots of hits.

  15. Frozen Orange Juice by Anonymous Coward · · Score: 0

    Never underestimate the power of frozen orange juice!

  16. Re:Only illegal if "executive" is not in your titl by ArylAkamov · · Score: 4, Insightful

    So, when will we see Zuckerberg on trial?
    How about Intel's CEO? Didn't he sell a bunch of stock right before Spectre and Meltdown were announced?

  17. haxxy haxxy haxx0rz! dey b totas haxxenin!1! by Anonymous Coward · · Score: 0

    "News" that reads like bad hollywood writing isn't readworthy, thus not informative, and so not news.

    But then, this crop of "editors" wouldn't spot news if it bit them in the arse and used them for a fire hydrant.

  18. Re: Only illegal if "executive" is not in your tit by Anonymous Coward · · Score: 1

    This idiot actually believes there are no rich Democrats in "public service."

  19. Re: Only illegal if "executive" is not in your tit by Anonymous Coward · · Score: 0

    Tell that to the ENRON execs who dumped all their stocks while employee stocks remained frozen before it tanked.

  20. Re:Only illegal if "executive" is not in your titl by rtb61 · · Score: 1

    If you are a three letter espionage agency, working with off balance sheet hedge fund, and hack into companies where the press releases are being written, pondered over, edited and resubmitted for approval prior to release. You can get way ahead and afford an Island in the US Virgin Islands and never be prosecuted for insider trading, woo hoo. Those amateur Russians have got nothing on the professionals, no hint of prosecution for them and they are making much more.

    --
    Chaos - everything, everywhere, everywhen
  21. Turchynov hacking press releases for years by najajomo · · Score: 1

    "For years, Turchynov said, he'd been hacking unpublished press releases from business newswires and selling them"

    Guessing an easily predictable sequencial URL number can hardly be called hacking now can it.

  22. Where is the responsibility for the software bugs? by Mr.+Dollar+Ton · · Score: 1

    Investigating and prosecuting for hacking-schmacking is okay, but it isn't a remedy, it is an act of revenge. Unless the companies, which were careless enough to develop and deploy a defective product or don't have adequate training and operational policies to effectively mitigate phishing attacks are held responsible, the incentives are tilted the wrong way.

    Imagine what cars would have looked like if car companies were not responsible for the damage a defect in the car cost.

    Yet in 2018 my bank's online services contract still claims all losses due to "hacking" are mine only, even if the bank system was at fault.

  23. Re:Only illegal if "executive" is not in your titl by Quince+alPillan · · Score: 1

    Even if someone commits a crime, you still need to have someone willing to prosecute it and prove that someone actually committed a crime.

  24. Re:Only illegal if "executive" is not in your titl by cheesybagel · · Score: 1

    Don't forget the Intel Capital/AMD fiasco back when Hector Ruiz was President of AMD.

  25. Re:Only illegal if "executive" is not in your titl by cheesybagel · · Score: 1

    https://www.cbsnews.com/news/g...

  26. Re:Where is the responsibility for the software bu by Anonymous Coward · · Score: 0

    What crappy bank do you use? In Canada I've never heard of anyone being held financially responsible for hacking as a consumer.