Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Security Privacy

Hacker Publishes 2TB of Data From Cayman National Bank (vice.com) 44

An anonymous reader quotes a report from Motherboard: On Sunday, Motherboard reported that the hacker or hackers known as Phineas Fisher targeted a bank, stole money and documents, and is offering other hackers $100,000 to carry out politically motivated hacks. Now, the bank Phineas Fisher targeted, Cayman National Bank from the Isle of Man, confirmed it has suffered a data breach. "It is known that Cayman National Bank (Isle of Man) Limited was amongst a number of banks targeted and subject to the same hacking activity," Cayman National told Motherboard in a statement issued Monday.

"A criminal investigation is ongoing and Cayman National is co-operating with the relevant law enforcement authorities to identify the perpetrators of the data theft. Cayman National takes any breach of data security very seriously and a specialist IT forensic investigation is underway, with appropriate actions being taken to ensure that the clients of Cayman National's Isle of Man bank and trust companies are protected," the statement added. The statement doesn't name Phineas Fisher explicitly, but instead says the bank was the victim of a "criminal hacking group." "I robbed a bank and gave the money away," Phineas Fisher wrote in their most recent manifesto, adding that they breached the bank in 2016. "Computer hacking is a powerful tool to fight economic inequality." In its statement, Cayman National claimed it had found no evidence of financial loss either to its customers or Cayman National itself.
Twitter account Distributed Denial of Secrets (DDoSecrets) posted a link to the copies of the servers of Cayman National Bank and Trust. "To make certain files easier to access, the two Athol servers were combined into a single archive. The raw Athol servers will be released next week, along with the launch of the Hunter Memorial Library which will make over 600,000 of the bank's emails searchable online," reads a follow-up tweet.

The total size of data is about 2 terabytes.
This discussion has been archived. No new comments can be posted.

Hacker Publishes 2TB of Data From Cayman National Bank

Comments Filter:
  • It's ./: please use correct terms here!
    • Robin Hood (Score:5, Insightful)

      by Gravis Zero ( 934156 ) on Monday November 18, 2019 @08:06PM (#59428598)

      What's legal is not always what is just and what is just is not always legal.

      The most celebrated do-gooders are often labeled as criminals by those in positions of power because they violated the laws protecting that power.

      • Re:Robin Hood (Score:4, Interesting)

        by rtb61 ( 674572 ) on Monday November 18, 2019 @08:13PM (#59428616) Homepage

        I have to say I would far prefer that Navy Seals and IRS agents publicly raided tax haven banks and took a copy of all the data and public prosecute the criminals exposed, especially those in the tax havens, rather than a criminal act but then again I suppose it depends who did the hacking, governments or individuals. Tax Haven marauders pillaging the social services of other countries to feed the insatiable greed of the richest and tens of millions citizens suffer and die unnecessarily, is really an act of economic warfare and should be appropriately publicly punished. An act of economic warfare in return, blocking all fiscal transaction to and from tax havens, ALL OF THEM, all tax havens and all transactions.

        • by ahodgson ( 74077 )

          You do understand that these tax havens are sovereign nations, right? They are not subject to your laws.

          • Re:Robin Hood (Score:4, Informative)

            by flyingfsck ( 986395 ) on Tuesday November 19, 2019 @04:13AM (#59429466)
            Err... You do understand that the UK and USA top the list of tax havens right? (Isles of Virgin, Guernsey, Jersey, Wight... States of Delaware, Montana, South Dakota, Alaska...)
            • by Dunbal ( 464142 ) *
              Correct. I live in Costa Rica and trade on the US exchanges. I pay zero tax (except 30% withholding tax on dividends) because 1) I am not an American citizen or resident, 2) I'm not a resident or citizen of a country that requires me to report and pay tax on my world income and 3) Costa Rica does not tax income earned outside Costa Rica. Upside, no income tax. Downside, I have to put up with the potholes and shitty internet service. To me, it's worth it. To others, maybe they prefer nice roads and police/am
              • Why should Costa Rica be able to shake you down for earnings outside of Costa Rica that largely use none of its infrastructure and could use none if you ran solar power of your own and had satellite internet, but otherwise you already pay for those utilities and if they subsidize them for you that’s their own fault.

                I think that it’s the U.S. position of thinking it’s in any way entitled to the earnings of its citizens living and working abroad that is completely insane.
                • by Dunbal ( 464142 ) *
                  Not to mention 15-50% import duty on anything I bring into the country and my $25k car costing me $55k... There's a price to everything. The cheaters are the ones who sponge off the first world by living there and taking advantage of the infrastructure/services, but hide their money offshore. I agree they need to be caught and thrown in jail if/when they break the law.
        • by skegg ( 666571 )

          Ah, buddy, I'm not sure how to break this to you. The very people who control national taxation bodies and direct special forces are the ones who use tax havens:

          Panama Papers - People named [wikipedia.org]

          They're more likely to use both of those resources to destroy (either financially or physically) anyone who endangers their prosperity.

          Related to the above: you may be interested in this film [wikipedia.org] based on the Panama Papers scandal.

          • He's a fan of the IRS which exists to transfer wealth from the middle-class to the rich, who pay almost no taxes. It does provide proof-of-extraction for the Federal Reserve's money-printing operations, which also steal middle-class wealth and further impoverishes the poor through money-printing operations. The Federal Reserve Board is made up of all the country's richest banks. I don't see how one can oppose economic warfare and ignore the domestic type.

          • Thank you. It is far more likely politicians and other non-business people are using this. It supports the notion people go into politics for the graft.

            This upsets true believers. No matter.

            Watch and see.

            • Thank you. It is far more likely politicians and other non-business people are using this. It supports the notion people go into politics for the graft.

              Of course some people go into politics for the graft. Even of those that go in for other reasons it's possible that most of them end up in some level of graft. The idea that all politicians are in it for the graft is a mind trick played by the corrupt - both politicians and internet trolls posting messages for money - in order to get the rest of us to say things like "they are all the same" and start ignoring their crimes.

              This upsets true believers. No matter.

              Watch and see.

              Strawman. There are no people who believe that there is no corruption in politics.

              • ...we should investigate them all ...

                And there's the problem.

                The only people legally authorized to investigate and prosecute their crimes are they themselves.

                "We investigated ourselves and found nothing wrong." or "The prosecutor/DA chooses not to go forward with prosecution because reasons." If anyone else tries they call them criminals, domestic terrorists, dangerous extremists, etc etc, and put them in cages with threats of deadly force carried out by heavily armed paramiltary domestic forces in retaliation for any noncompliance or resista

        • by Dunbal ( 464142 ) *

          and tens of millions citizens suffer and die unnecessarily

          followed by

          blocking all fiscal transaction to and from tax havens, ALL OF THEM, all tax havens and all transactions.

          So your "solution" is just as bad, or worse, than the "problem". You say you are against millions suffering and dying unnecessarily so long as you're not the one pulling the trigger. How about countries with strict tax laws actually enforce those laws instead. It's not the fault of a country that has no income tax laws that capital flocks towards them. It's not their duty to screen people and turn people away because of some other country's laws. Also you have to remember it's INCOME tax, not "ha

      • Inadmissible in any court. They have annoyed a few people and brought attention on themselves. No one else is at risk from their data dump.
        • by Dunbal ( 464142 ) *

          No one else is at risk from their data dump.

          The bank is at risk. I certainly wouldn't want to bank with them now if their security is so weak. Just like I'm sure that I will never do business with Mossack Fonseca [wikipedia.org].

        • Yes, but as with the Panama papers this will lead to warrants for admissible b evidence. Countries were able to recuperate over a billion in unpaid taxes as a direct result of said papers.
      • Then they are not really celebrated. Usually it is those in positions of power who decide who gets celebrated and who is to be despised.

        These hacks of offshore banks are of major importance. While the state and large businesses know everything about the population, there is a small upper layer who are exempt and whom we know very little about. These hacks show what these people are up to with their money. It doesn't mean these activities are illegal , since guess who decides what is illegal. But it's hidden

    • It's ./: please use correct terms here!

      /. is the messenger. I'm surprised you don't get that. After all, it's /.

    • remember kids: illegal action is "cracking", not "hacking" :)
    • We've moved on from that terminology. Now we have white, grey, and black-hat hackers. And also red hat hackers, which plague systems with creeping featurism via init system trojans. ;)

  • by johnjones ( 14274 ) on Monday November 18, 2019 @07:57PM (#59428580) Homepage Journal

    whenever I read/hear the phrase "bank grade security" I know they have no clue...

    • whenever I read/hear the phrase "bank grade security" I know they have no clue...

      THEY have a clue. They know perfectly well that "bank grade security" is the minimal level of security that the regulators and insurers require the banks use in order to not be blamed for all the cracks.

      They think their CUSTOMERS (and potential customers) don't have a clue

      • by mi ( 197448 )

        the minimal level of security that the regulators and insurers require

        Which, actually, is very very high. Or else you'd have such breaches all the time — banks are, understandably, a magnet for this kind of crime...

        • by Dunbal ( 464142 ) *
          Often it's an inside job although the bank will never, ever admit that. My wife had 2 credit card numbers abused, in sequence. The interesting thing was that said credit cards were on an account in a country we hadn't lived in for 3 years, and were brand new cards that hadn't been used yet anywhere so it's not a case of them being "scanned". It's a case of the bank's database being leaked. The bank of course never admitted it. The fuckers even wanted us to be responsible for the charges made to the card the
  • Check out The Laundromat on Netflix (great cast, fun movie). Sadly true and depressing (almost all of us are Bambi and those who offshore are the dinosaur crushing us - and at a great tax rate!).

    This should make for a good sequel.

    If they did breach in 2016, to me, this may indicate that they found something particularly interesting (or the whole thing was boring, could go either way - my guess is interesting).

  • Be a lot a tory bribes showing up in there.
  • Confusing geography (Score:4, Informative)

    by timeOday ( 582209 ) on Monday November 18, 2019 @09:27PM (#59428818)
    Legit governments funded by taxpayers should not waste their resources enforcing laws for tax havens.
    • by PPH ( 736903 )

      But the USA is one of the biggest tax havens for foreigners.

      • I didn't know that. I wish I were more surprised. I wish governments would work together more to close international tax loopholes. Besides wishing I also vote in that direction. But it doesn't seem to be working.
        • by PPH ( 736903 )

          We have this little law called FATCA [wikipedia.org]. Basically, if any of our people have accounts in your overseas banks, we want the records. Now imagine that turned around. The tax and finance ministry of some third world country wanting a snoop around US banks' records because some of their people might be hiding assets in the USA. The laughter would be heard world wide. The USA refuses to enter into reciprocal reporting agreements and worldwide reporting standards.

          • by Dunbal ( 464142 ) *
            Yep that's all part of the double standard Pax Americana that people all over the world are getting pissed at. We don't "hate you for your freedoms". There's plenty of freedom all over the world.
  • Paper files in a safe.
    A reference number on the top of the file.
    Names linked to number on another set of files.
    Walk out with names, its only names.
    Walk out with files, no names lost.
    Want to link names and files? In person and it takes a walk and vist to two very different secure locations.
    Coffee, tea while the users waits a few mins.
  • At the risk of stating the obvious:

    Monitor all connections for unusual activity.

    Monitor total activity at any given time for unusual volumes.

    When alarms go off, take appropriate action.

    This won't prevent breaches but it can catch them in progress and limit the amount of data that leaks.

You know you've landed gear-up when it takes full power to taxi.

Working...