United States Attorney David Anderson announced this Friday that a russian man has been found guilty of hacking in three tech companies of the Bay Area.
A Russian man named Yevgeniy Nikulin, 32, was charged for hacking LinkedIn eight years ago. On this Friday, he was convicted of hacking into LinkedIn, Dropbox and Social Networking company formerly known as Formspring.
This was one of the largest data breaches in the US. In this breach 117 million profile logins were stolen. The trial was started in the beginning of the march but was postponed by the Coronavirus Pandemic.
On the 3rd and 4th march of 2012 he was able to enter into an employee’s laptop and was able to put malware into that laptop which allowed him to abuse employee’s VPN and access.
From where, he stole 117 million user records, including username, passwords and emails.
Then Nikulin used that data to send phishing emails to employees of different companies, including employees working at Dropbox, where he was able to hack an employee’s profile and then invite himself to a Dropbox folder holding company data.
In this breach he was able to steal information of 68 million dropbox users including usernames, passwords and emails.
Nikulin was able to hack a profile of a Formspring engineer, from where he gained access to the company’s internal database and 30 million users details.
Then Nikulin sold that data on the underground hacker market. He sold that data to other cyber criminals.
After the criminal complaints of three companies the investigation was started in California, in 2015. Nikulin was arrested a year later, in october 2016.
In the summer of 2017, he was eventually sent to the US, where he was arraigned in front of a judge.
Nikulin was changing several lawyers, refused to cooperate with investigations, was moved through multiple jails and was examined by different psychologists.
The actual trail was set in the early 2020 but was postponed due to the Coronavirus Pandemic.