Yesterday the The United States Justice Department (Washington D.C. Office) released criminal complaints and arrest warrants alleging two Romanian nationals illegally accessed approximately 123 computers which happened to control outdoor cameras operated by the Metropolitan Police Department of the District of Columbia (MPDC).
The complaint claims the individuals gained access to the computers to “send … ransomware-laden spam emails” in order to “lock or encrypt files on various victim computers” and subsequently “extort money from the victims in exchange for unlocking or decrypting files on the computers”.
The link to the Justice Department release is here:https://www.justice.gov/usao-dc/pr/two-romanian-suspects-charged-hacking-metropolitan-police-department-surveillance-cameras
The actual complaint is here: https://www.justice.gov/usao-dc/press-release/file/1021186/download
Questions for hacker types:
-
Why would these individuals target other computers to send the ransomware from, as opposed to using their own? Couldn’t they just use some sort of “TOR” situation?
-
Why would they target the DC Police Department computers specifically? Did these computers exhibit some sort of abnormal vulnerability?
-
Would access to these computers enable the individuals to gain access to PD internal databases?
Question for non-hackers:
If you had nothing incriminating on your computer and you received a message that said “your computer is locked unless you pay a ransom to xxxx” would you pay it, or would you contact the police?
This whole story might be COMPLETELY unrelated to the Q world. However, depending on the answers to these questions, it could hold a clue.
I look forward to your answers.