How an Indian startup hacked the world

Reuters previously named Appin in a story about Indian cyber mercenaries published last year. This report paints the clearest picture yet of how Appin operated, detailing the world-spanning extent of its business, and international law enforcement's abortive efforts to get a handle on it. Clare Locke said that, under Khare's tenure, Appin specialized in training thousands of students in cybersecurity, robotics and artificial intelligence, "Never in illicit hacking." The lawyers said Khare left Appin, in part, because rogue actors were operating under the company's brand, and he wanted "To avoid the appearance of associations with people who were misusing the Appin name." The lawyers described media articles tying Khare to hacking as "False" or "Fundamentally flawed." As for the 2010 Appin presentation boasting of hacking services, they said Khare had never seen it before. Reuters verified the authenticity of the Appin communications with 15 people, including private investigators who commissioned hacks and ex-Appin hackers themselves. Abramovich's representatives said the tycoon had no dealings with or knowledge of Mor or Appin, and that he had never engaged with hackers or hacked material of any kind. In chat exchanges from Nov. 10-12, 2011, Dominican newspaper publisher Jochi Gómez chats with an Appin employee about extracting data from hacked accounts. By 2007, Appin opened a digital security consultancy helping Indian organizations protect themselves online, according to a draft pitch deck intended for potential investors. To help the officials break into computers and emails, Appin set up a team of hackers out of a subsidiary called Appin Software Security Pvt. Ltd., also known as the Appin Security Group, according to a former executive, company communications, an ex-senior Indian intelligence figure and promotional documents seen by Reuters. Soon Appin was working with the Research & Analysis Wing, India's external intelligence service; and the Intelligence Bureau, the country's domestic spy agency, according to the two former executives, one former Appin hacker and a former senior Indian intelligence official. In 2009, Appin boasted to prospective customers that it was serving India's military, its Ministry of Home Affairs, and the Central Bureau of Investigation, an Indian agency roughly equivalent to America's Federal Bureau of Investigation, emails show. Israeli private eye Aviram Halevi instructs "Trinity" and other Appin hackers on what to do on Oct, 8, 2011, after the hackers break into the woman's inbox. American and Swiss law enforcement documents, including emails and investigative reports reviewed by Reuters, reveal how Appin got caught hacking as it fulfilled its customers' orders. In a report published in 2013, Mookhey wrote that the link to Appin was "Not concrete." But he told Reuters he had been "Overcautious" in choosing those words and that the evidence, including Appin documentation inadvertently left on the hackers' servers, made it obvious they were involved. Appin client "Jim H" on Oct. 19, 2011, coaches hackers on how to break into the emails of a Rwandan dissident. In her email to the FBI, Schweingruber said the Swiss investigation - nicknamed "Tandoori" - had found that "The Indian company Appin Security Group as well as their CEO Rajat Khare are involved in this case." A California private eye asks Appin on Nov. 16, 2011, for advice on how to move undetected through a woman's hacked email account. Rajat Khare's lawyers say he left Appin Technology in December 2012, a move that "Officially and immediately separated him from all Appin entities." They produced two letters they said showed those resignations. Khare's signature is on several Appin corporate filings dating to 2013 and 2014; and shareholder data shows he maintained a stake in Appin Technology for several years past 2012. According to Indian corporate records, Khare - who is now a Switzerland-based investor - resigned as director of the company once known as Appin Technology only in 2016.

This Cyber News was published on www.reuters.com. Publication date: Thu, 30 Nov 2023 23:19:27 +0000


Cyber News related to How an Indian startup hacked the world

How an Indian startup hacked the world - Reuters previously named Appin in a story about Indian cyber mercenaries published last year. This report paints the clearest picture yet of how Appin operated, detailing the world-spanning extent of its business, and international law enforcement's ...
10 months ago Reuters.com
EFF Helps News Organizations Push Back Against Legal Bullying from Cyber Mercenary Group - For the last several months, there has emerged a campaign of bullying and censorship seeking to wipe out stories about the mercenary hacking campaigns of a less well-known company, Appin Technology, in general, and the company's cofounder, Rajat ...
8 months ago Eff.org
US SEC's X account hacked to announce fake Bitcoin ETF approval - The X account for the U.S. Securities and Exchange Commission was hacked today to issue a fake announcement on the approval of Bitcoin ETFs on security exchanges. The announcement came this afternoon in a now-deleted tweet from the SEC's hacked X ...
9 months ago Bleepingcomputer.com
DP World confirms data stolen in cyberattack, no ransomware used - International logistics giant DP World has confirmed that data was stolen during a cyber attack that disrupted its operations in Australia earlier this month. The company says no ransomware payloads or encryption was used in the attack. On November ...
10 months ago Bleepingcomputer.com
SideCopy Exploiting WinRAR Flaw in Attacks Targeting Indian Government Entities - The Pakistan-linked threat actor known as SideCopy has been observed leveraging the recent WinRAR security vulnerability in its attacks targeting Indian government entities to deliver various remote access trojans such as AllaKore RAT, Ares RAT, and ...
10 months ago Thehackernews.com
SEC confirms X account was hacked in SIM swapping attack - The U.S. Securities and Exchange Commission confirmed today that its X account was hacked through a SIM-swapping attack on the cell phone number associated with the account. Earlier this month, the SEC's X account was hacked to issue a fake ...
8 months ago Bleepingcomputer.com
Mandiant's X account hacked by crypto Drainer-as-a-Service gang - The threat actor who took over Mandiant's X social media account used it to share links, redirecting the company's over 123,000 followers to a phishing page to steal cryptocurrency. As Mandiant found during a follow-up investigation into the ...
9 months ago Bleepingcomputer.com
Indian IT Leaders Identify Security Gap in Data Policies - A recent study by Rubrik, a US-based data security firm, has bare concerning reality within the Indian IT sector: an alarming 49% of IT leaders feel that security remains a glaring omission within their organization's data policies. This discovery ...
9 months ago Securityboulevard.com
750m Indian mobile subscribers' info for sale on dark web The Register - Asia In Brief Indian infosec firm CloudSEK last week claimed it found records describing 750 million Indian mobile network subscribers on the dark web, with two crime gangs offering the trove of data for just $3,000. CloudSEK named CYBO CREW ...
8 months ago Go.theregister.com
Google Invests $350m In India's Flipkart - Google becomes minority shareholder in Walmart-owned Amazon competitor Flipkart as it progresses investment plans in India. Google is to buy a minority stake worth $350 million in Indian e-commerce company Flipkart, which is majority-owned by ...
4 months ago Silicon.co.uk
When Looking For Cybersecurity Solutions, Don't Shrug Off Startups - Let's say you're looking for some new technology for your business. That's why it's time to start giving startup tech a fair shake. It's nice to stick with a known commodity, especially when you're talking about securing your company's digital ...
10 months ago Cybersecurity-insiders.com
The Startup That Transformed the Hack-for-Hire Industry - If you're looking for a long read to while away your weekend, we've got you covered. First up, WIRED senior reporter Andy Greenberg reveals the wild story behind the three teenage hackers who created the Mirai botnet code that ultimately took down a ...
9 months ago Wired.com
Indian tech giant HCL investigating ransomware attack - Indian information technology company HCL Technologies reported a ransomware attack to regulators on Wednesday and said that it is investigating the incident. HCL Technologies, based in Noida, is one of the largest tech companies in the world with ...
9 months ago Therecord.media
Ukrainian military says it hacked Russia's federal tax agency - The Ukrainian government's military intelligence service says it hacked the Russian Federal Taxation Service, wiping the agency's database and backup copies. Following this operation, carried out by cyber units within Ukraine's Defense Intelligence, ...
9 months ago Bleepingcomputer.com
Over 15,000 hacked Roku accounts sold for 50¢ each to buy hardware - Roku has disclosed a data breach impacting over 15,000 customers after hacked accounts were used to make fraudulent purchases of hardware and streaming subscriptions. BleepingComputer has learned there is more to this attack, with threat actors ...
7 months ago Bleepingcomputer.com
Apple alert: India opposition says government tried to hack phones - Some Indian opposition leaders have accused the government of trying to hack into their phones after receiving warning messages from Apple. Apple's alert said it believed the recipient was "Being targeted by state-sponsored attackers". He added that ...
10 months ago Bbc.com
Indian Government Warns Social Media Platforms Over Deepfake Misinformation - In a strong statement directed at social media platforms, the government of India has emphasized the critical need for swift identification and removal of misinformation, including deepfakes, or risk facing legal consequences. This warning follows a ...
8 months ago Cysecurity.news
Indian police arrest five accused of trafficking people into scam compounds - On May 27, the National Investigation Agency said it had searched locations across six states and seized evidence like digital devices and bogus employment letters. Southeast Asia's cyber fraud industry, which is run primarily by Chinese organized ...
4 months ago Therecord.media
Exploit released for critical Cisco IOS XE flaw, many hosts still hacked - Public exploit code is now available for the critical Cisco IOS XE vulnerability tracked as CVE-2023-20198 that was leveraged as a zero-day to hack tens of thousands of devices. Cisco released patches for most releases of its IOS XE software but ...
10 months ago Bleepingcomputer.com
Hacker spins up 1 million virtual servers to illegally mine crypto - A 29-year-old man in Ukraine was arrested this week for using hacked accounts to create 1 million virtual servers used to mine $2 million in cryptocurrency. As announced today by Europol, the suspect is believed to be the mastermind behind a ...
8 months ago Bleepingcomputer.com
Pwn2Own Automotive: $1.3M for 49 zero-days, Tesla hacked twice - The first edition of Pwn2Own Automotive has ended with competitors earning $1,323,750 for hacking Tesla twice and demoing 49 zero-day bugs in multiple electric car systems between January 24 and January 26. Throughout the contest organized by Trend ...
8 months ago Bleepingcomputer.com
Swinfen Charitable Trust, UVA Health, Telemedicine AI, and MITRE Collaborate on Secure Global Health Telemedicine - PRESS RELEASE. McLean, Va., and Bedford, Mass., December 14, 2023 - To further support access to global health services, the Swinfen Charitable Trust, UVA Health, Telemedicine AI, and MITRE announced a new collaboration to enable medical cyber ...
9 months ago Darkreading.com
Cybersecurity Curriculum Development Tips - In this article, we will explore essential tips for developing a comprehensive and up-to-date cybersecurity curriculum. By staying abreast of the latest industry trends, educational program developers can ensure that their curriculum remains relevant ...
9 months ago Securityzap.com
Dawnofdevil hacker group claims to steal Indian Income Tax department data - A recently identified hacking group, known as 'Dawnofdevil,' has surfaced, claiming responsibility for breaching the web portal of the Indian Income Tax Department. This emerging group entered the hacking scene in December 2023 and gained attention ...
8 months ago Cybersecurity-insiders.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)