A man who broke the prison system to change the release date of an associate was taken to prison today. Konrads Voits, a hacker from Michigan, will have to serve seven years and three months.
As the Bleeping Computer says, Voits tried to reach records of detainees to release a partner earlier.
27 will also have to pay 235.488 dollars as a fine for the full cost of investigating and coping with the violation.
According to the Voits indictment, issued in December of 2017, from January to March of the same year, the hacker was trying to release a prisoner.
Voits started with social engineering trying to get prison staff to visit domain ewashtenavv.org, αλλάζοντας το “w” στο πραγματικό domain της by clicking hereof ewashtenaw.org prisons in an effort to make it seem like normal.
The malicious domain was a complete one copy of the actual prison website, but it contained malware. The hacker chatted with prison staff, posing as "Daniel Greene" and asked for help with "court records", requiring staff to visit the fake website.
Spear-phishing aimed to attract prison staff to visit the malicious domain and download malicious applications to the store's computers, but failed.
Viots was undeterred. He later sent an email to the prison, pretending to be personal information technologys that was upgrading the prison systems. Voits again asked prison officials to visit the malicious domain and download executable "upgrade" files that contained malware.
This time he did it: He managed to install malware in prison systems and was able to collect information such as login credentials, emails, and personal 1600 employee information.
Voits also managed to gain access to the XJail system, an internal application for prisoners' records. In March, through XJail he changed the records of at least one prisoner.
However, the hacker underestimated prison staff. The violation was detected almost immediately, and the malicious file was corrected immediately. At the same time, the FBI was notified to locate the attacker.
"The Voit breach forced the county to hire an incident response firm to determine the full extent of the breach, restore records, verify the accuracy of the electronic records of nearly all inmates at the jail, and try to reassure the 1600 jail employees. whose privacy had leaked", says the indictment.
"Hopefully, after his release, Voits will be able to use his tremendous skills to make our society a better place."
- Yahoo: fine 35 million dollars to hide the hack
- Fake News: No political intervention, to solve those who created it
