A British man has been sentenced to five years in prison for stealing information from several US companies as part of The Dark Overlord hacking group.
Nathan Francis Wyatt, a 39-year-old from Northamptonshire, pleaded guilty to conspiring to commit aggravated identity theft and computer fraud in a federal court in St Louis.
Wyatt, the only member of the group to have been identified, set up a phone account and Twitter and PayPal profiles that were used to communicate and receive money. He was ordered to pay about $1.5 million in restitution fees.
The Dark Overlord stole medical records, client files and personal information from companies, then demanded between $75,000 and $300,000 worth of Bitcoin to return the information, according to federal prosecutor Laura Kathleen Bernstein.
The group has been linked to a spate of attacks in both the US and UK and often threaten to release stolen data on the dark web if their demands are not paid.
Wyatt's actions helped the other hackers remain anonymous, according to Bernstein, and his phone account was used to send threatening text messages to relatives of victims. Although none of the victims paid the ransom, they did lose money due to the intrusion and subsequent release of stolen data.
During his Zoom hearing, Wyatt apologised and said that his mental health problems were the reason for his bad decisions, according to The St.Louis Post-Dispatch.
"I can promise you that I'm out of that world," he said. "I don't want to see another computer for the rest of my life."
In an unrelated case, Wyatt was arrested in 2016 by police investigating the hacking of an iCloud account that belonged to Pippa Matthews - the sister of the Duchess of Cambridge. Wyatt was released with no further action in September 2017. He has, however, served 14 months in a British prison for hacking and fraud offences.
-
Oracle is reaping the rewards of OpenAI’s huge compute requirementsNews Blockbuster infrastructure deals have sent Oracle shares skyrocketing
-
Google opens doors on UK data center ahead of Trump visitNews The Waltham Cross data center opening comes alongside £5 billion in investment across the country
-
Prolific ransomware operator added to Europe’s Most Wanted list as US dangles $10 million rewardNews The US Department of Justice is offering a reward of up to $10 million for information leading to the arrest of Volodymyr Viktorovych Tymoshchuk, an alleged ransomware criminal.
-
Jaguar Land Rover “did the right thing” shutting down systems to thwart cyber attackNews The attack on Jaguar Land Rover highlights the growing attractiveness of the automotive sector
-
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalitiesNews The attack on IT systems supplier Miljödata has impacted public sector services across the country
-
A notorious hacker group is ramping up cloud-based ransomware attacksNews The Storm-0501 threat group is refining its tactics, according to Microsoft, shifting away from traditional endpoint-based attacks and toward cloud-based ransomware.
-
Security researchers have just identified what could be the first ‘AI-powered’ ransomware strain – and it uses OpenAI’s gpt-oss-20b modelNews Using OpenAI's gpt-oss:20b model, ‘PromptLock’ generates malicious Lua scripts via the Ollama API.
-
Data I/O shuts down systems in wake of ransomware attack
News Regulatory filings by Data I/O suggest the costs of dealing with the attack could be significant
-
Average ransom payment doubles in a single quarterNews Targeted social engineering and data exfiltration have become the biggest tactics as three major ransomware groups dominate
-
BlackSuit ransomware gang taken down in latest law enforcement sting – but members have already formed a new groupNews The notorious gang has seen its servers taken down and bitcoin seized, but may have morphed into a new group called Chaos
