BreachForums admin jailed for flouting pretrial rules The Register

The cybercriminal behind BreachForums was this week arrested for violating the terms of his pretrial release and will now be held in custody until his sentencing hearing.
He was granted pretrial release on a $300,000 bond under a number of conditions, which included not using a computer without monitoring software controlled by the pretrial services office, and using a VPN, both of which he was arrested for violating.
He will now be held in custody until he attends his separate court appearances, for breaching his pretrial agreement and his main sentencing hearing.
The other conditions of his pretrial release prevented him from any contact with minors other than his own sibling unless supervised by an adult familiar with his offense, visiting cybercrime-related websites, registering new domains or creating new websites, seeking employment, or enrolling in educational programs.
For each of his two access device fraud charges, Fitzpatrick faces a maximum prison sentence of 10 years, a fine of $250,000, full restitution for victims, and forfeiture of assets.
The latter includes proceeds generated from his crimes amounting to at least $698,714, all cryptocurrencies, property, registered domains, electronic hardware, and any owned child sex abuse material or fraud-related assets.
The child sex abuse material charge attracts a maximum sentence of 20 years in prison and a further $250,000 fine, as well as the requirement to be added to the sex offenders register.
Fitzpatrick's sentencing hearing was originally scheduled for November 17, 2023, but was pushed back at the request [PDF] of his legal representatives after a psycho-sexual expert said they were unable to complete their evaluation of Fitzpatrick in time for the hearing due to a large workload. It has now been moved to January 19 [PDF].
FBI pumps 'significant' resources into snaring data-theft crew Strangely enough, no one wants to buy a ransomware group that has cops' attention Get your very own ransomware empire on the cheap, while stocks last Cybercrim claims fresh 23andMe batch takes leaked records to 5 million.
BreachForums was created by Fitzpatrick shortly after the fall of similar site RaidForums, which was taken down by law enforcement in 2022 after six years in operation.
According to Fitzpatrick's plea deal [PDF], he controlled the BreachForums site for at least a year between March 2022 and 2023, along with other admins.
It also hosted tutorials that educated users on how to execute other types of cybercrime, and Fitzpatrick himself was said to have acted as a trusted middleman offering an escrow service to forum users wishing to exchange information for money.
According to a forum post made by Fitzpatrick in 2022, picked up by prosecutors, he claimed to have handled more than $430,000 in such escrow activities.
Among the most notable leaks hosted on BreachForums were the personal information of 200 million Twitter users, the plea deal said without naming Twitter explicitly, and the details about members of the InfraGard critical infrastructure partnership between the FBI and private sector companies in 2022.
Today, BreachForums still exists under a new domain and is thought to be run by the criminal known as Baphomet, Fitzpatrick's closest ally during the period in which he ran the forum.
Following the original takedown in 2023, a litany of copycat sites emerged attempting to piggyback off the popularity of the BreachForums brand, though many at the time were wary of them potentially being controlled by the FBI to catch additional criminals.
Authorities have been known to carry out these kinds of operations in the past, such as the case with the dark web market Hansa in 2017, which ultimately led to hundreds of arrests.


This Cyber News was published on go.theregister.com. Publication date: Fri, 05 Jan 2024 15:13:04 +0000


Cyber News related to BreachForums admin jailed for flouting pretrial rules The Register

BreachForums admin jailed for flouting pretrial rules The Register - The cybercriminal behind BreachForums was this week arrested for violating the terms of his pretrial release and will now be held in custody until his sentencing hearing. He was granted pretrial release on a $300,000 bond under a number of ...
11 months ago Go.theregister.com
BreachForums admin jailed for flouting pretrial rules The Register - The cybercriminal behind BreachForums was this week arrested for violating the terms of his pretrial release and will now be held in custody until his sentencing hearing. He was granted pretrial release on a $300,000 bond under a number of ...
11 months ago Theregister.com
BreachForums admin jailed again for using a VPN, unmonitored PC - The administrator behind the notorious BreachForums hacking forum has been arrested again for breaking pretrial release conditions, including using an unmonitored computer and a VPN. The BreachForums admin, Conor Fitzpatrick, was arrested on March ...
11 months ago Bleepingcomputer.com
Bringing Composability to Firewalls with Runtime Protection Rules - Rule control - Customers could not easily write their own firewall rules because of the use of proprietary languages that most teams weren't familiar with unless they received specialized training, or behind walled gardens only accessible by vendor ...
10 months ago Securityboulevard.com
What Are Firewall Rules? Ultimate Guide - Firewall rules are preconfigured, logical computing controls that give a firewall instructions for permitting and blocking network traffic. Network admins must configure firewall rules that protect their data and applications from threat actors. ...
11 months ago Esecurityplanet.com
Leak Site BreachForums Springs Back to Life Weeks After FBI Takedown - Barely two weeks after the FBI and the US Department of Justice shut down BreachForums, the notorious data leak site appears to be back online, hawking personal and payment card data purportedly belonging to more than 500 million Live ...
6 months ago Darkreading.com
EFF to Court: Electronic Ankle Monitoring Is Bad. Sharing That Data Is Even Worse. - The government violates the privacy rights of individuals on pretrial release when it continuously tracks, retains, and shares their location, EFF explained in a friend-of-the-court brief filed in the Ninth Circuit Court of Appeals. In the case, ...
7 months ago Eff.org
BreachForums hacking forum admin sentenced to 20 years supervised release - Conor Brian Fitzpatrick was sentenced to 20 years of supervised release today in the Eastern District of Virginia for operating the notorious BreachForums hacking forum, known for the sale and leaking of personal data for hundreds of millions of ...
11 months ago Bleepingcomputer.com
BreachForums administrator detained after violating parole - The administrator behind defunct cybercrime haven BreachForums was arrested after violating his parole, according to court documents filed this week. Conor Brian Fitzpatrick was arrested on January 2 by FBI officers after officials told a judge that ...
11 months ago Therecord.media
Understanding the New SEC Rules for Disclosing Cybersecurity Incidents - The U.S. Securities and Exchange Commission recently announced its new rules for public companies regarding cybersecurity risk management, strategy, governance, and incident exposure. "Currently, many public companies provide cybersecurity disclosure ...
1 year ago Feeds.dzone.com
Tell the FCC It Must Clarify Its Rules to Prevent Loopholes That Will Swallow Net Neutrality Whole - The Federal Communications Commission has released draft rules to reinstate net neutrality, with a vote on adopting the rules to come on the 25th of April. The FCC needs to close some loopholes in the draft rules before then. Net neutrality is the ...
8 months ago Eff.org
Sigma rules for Linux and MacOS ~ VirusTotal Blog - TLDR: VT Crowdsourced Sigma rules will now also match suspicious activity for macOS and Linux binaries, in addition to Windows. We recently discussed how to maximize the value of Sigma rules by easily converting them to YARA Livehunts. At that time ...
1 year ago Blog.virustotal.com
Feds seize BreachForums platform, Telegram page - The website and Telegram page for the notorious BreachForums platform, a popular bazaar for stolen data and cybercriminal tools, appears to have been seized. On Wednesday morning, the BreachForums website was replaced by a takedown banner featuring ...
7 months ago Therecord.media
CVE-2013-0135 - Multiple SQL injection vulnerabilities in PHP Address Book 8.2.5 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) addressbook/register/delete_user.php, (2) addressbook/register/edit_user.php, or (3) ...
7 years ago
Data leak site BreachForums is back, boasting Live Nation/Ticketmaster user data. But is it a trap? - Notorious data leak site BreachForums appears to be back online after it was seized by law enforcement a few weeks ago. At least one of BreachForums domains and its dark web site are live again. Questions have been raised over whether it is a genuine ...
6 months ago Malwarebytes.com
US govt wants BreachForums admin sentenced to 15 years in prison - The United States government has recommended that Conor Brian Fitzpatrick, the creator and lead administrator of the now-defunct BreachForums hacking forums, receive a sentence of 15 years in prison. BreachForums was a notorious cybercrime forum that ...
11 months ago Bleepingcomputer.com
Establishing New Rules for Cyber Warfare - The efforts of the International Committee of the Red Cross to establish rules of engagement to combatants in a cyberwar should be applauded internationally, even if adherence is likely to be limited. The ICRC recently released a set of rules for ...
1 year ago Darkreading.com
What Is Packet Filtering? Definition, Advantages & How It Works - Packet filtering is a firewall feature that allows or drops data packets based on simple, pre-defined rules regarding IP addresses, ports, or protocols. Each data packet consists of three components: a header to provide information about the data ...
10 months ago Esecurityplanet.com
CVE-2017-17713 - Trape before 2017-11-05 has SQL injection via the /nr red parameter, the /nr vId parameter, the /register User-Agent HTTP header, the /register country parameter, the /register countryCode parameter, the /register cpu parameter, the /register isp ...
6 years ago
CVE-2017-17714 - Trape before 2017-11-05 has XSS via the /nr red parameter, the /nr vId parameter, the /register User-Agent HTTP header, the /register country parameter, the /register countryCode parameter, the /register cpu parameter, the /register isp parameter, ...
6 years ago
FAQ: What Is DFARS Compliance and How Does It Work? - Our intention is to offer a comprehensive perspective on DFARS in the context of cybersecurity, its various clauses, and the intricacies of maintaining compliance as these rules constantly shift and change over time. Size doesn't matter - big global ...
11 months ago Securityboulevard.com
CVE-2023-52780 - In the Linux kernel, the following vulnerability has been resolved: net: mvneta: fix calls to page_pool_get_stats Calling page_pool_get_stats in the mvneta driver without checks leads to kernel crashes. First the page pool is only available if the bm ...
7 months ago Tenable.com
CVE-2024-47716 - In the Linux kernel, the following vulnerability has been resolved: ARM: 9410/1: vfp: Use asm volatile in fmrx/fmxr macros Floating point instructions in userspace can crash some arm kernels built with clang/LLD 17.0.6: BUG: unsupported FP ...
2 months ago Tenable.com
AWS WAF: Secure CDN, Load Balancers, API Servers - DZone - If you want your application to contain specific validation tokens in headers, you can specify such rules in the WebACL associated with the Application Load Balancer. With AWS WAF, you can create security rules that control bot traffic and block ...
2 months ago Feeds.dzone.com
5 Ways Exabeam Delivers Better Security Outcomes Than Microsoft Sentinel - Security information and event management is one of the most important tools in the fight against cyberthreats, but not all SIEMs are created equal. Native SIEM solutions can be difficult to customize and maintain, and their advertised "Low or free" ...
1 year ago Exabeam.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)