Two Cyber Crime Gang Members Charged With Federal Data Portal Hack

pcmag.com:

Two men have been arrested for their roles in the 2022 hack of the Drug Enforcement Agency’s web portal, Gizmodo reports(Opens in a new window). 

Nicholas Ceraolo, 25, and Sagar Steven Singh, 19, have been accused by federal prosecutors of using compromised law enforcement passwords and government email accounts in order to obtain information about victims which they would use to blackmail and extort them. Ceraolo, who is charged with wire fraud and computer crimes is facing up to 20 years in prison, while Singh, charged with computer crimes, is facing up to five years in jail.

The DEA portal which was hacked reportedly provided Ceraolo, Singh, and the cybercriminal group named ‘ViLE’ that they were part of, with access to 16 different law enforcement databases full of sensitive information. 

In one case, using information obtained from the hack, Singh told a victim that he had access to their social security number, home address, and driver’s license information and said he would “harm” their family if they refused to comply with his demands.

In a different highlighted case, Ceraolo used an official email account belonging to a Bangladeshi police officer in order to get a social media platform to provide personal information about one of its subscribers. Ceraolo had told the company the subscriber was guilty of “child extortion” and blackmail and had threatened Bangladeshi government officials. 

Announcing the charges(Opens in a new window), United States Attorney for the Eastern District of New York Breon Peace said: “Singh and Ceraolo aptly belonged to a group called, as their crime was, ‘Vile.’ That conduct ends today. As alleged, the defendants shamed, intimidated and extorted others online.  This Office will not