U.S. Secret Service Probes Extortion Attempt Claiming Theft Of Romneys Tax Returns

  /     /     /  
Publicated : 22/11/2024   Category : security


U.S. Secret Service Probes Extortion Attempt Claiming Theft Of Romneys Tax Returns


Security experts say scammers claims sound fishy, Price Waterhouse Coopers says no evidence of breach



The U.S. Secret Service is investigating a bizarre case involving claims of an alleged theft of Republican presidential nominee Mitt Romneys tax records and a $1 million ransom fee in exchange for keeping them under wraps.
A Secret Service spokesperson confirmed reports that the agency is investigating the case, but declined to comment further. An unnamed person or group recently posted on Pastebin that they had accessed the Franklin, Tenn.-based offices of Price Waterhouse Cooper and copied onto USB sticks Romneys 1040 tax return documents for years prior to 2010 and sent copies to local Democratic and Republican party offices. The group will release all available files to the public on the 28 of September, 2012, an online
post
says.
The alleged attackers say they got inside the PWC offices on August 25, duping a man in the building to provide them access. Once on the 3rd floor, the team moved down the stairs to the 2nd floor and setup shop in an empty office room. During the night, suite 260 was entered, and all available 1040 tax forms for Romney were copied. A package was sent to the PWC on suite 260 with a flash drive containing a copy of the 1040 files, plus copies were sent to the Democratic office in the county and copies were sent to the GOP office in the county at the beginning of the week also containing flash drives with copies of Romneys tax returns before 2010. A scanned signature image for Mitt Romney from the 1040 forms were scanned and included with the packages, taken from earlier 1040 tax forms gathered and stored on the flash drives, the post says.
Meanwhile, a PWC spokesperson says theres no evidence of the theft. We are aware of the allegations that have been made regarding improper access to our systems. We are working closely with the United States Secret Service, and at this time there is no evidence that our systems have been compromised or that there was any unauthorized access to the data in question, the spokesperson said.
The
Nashville City Paper

reported
that the attackers demanded $1 million in Bitcoins to keep the records from being posted for all to see. They said they will send an encrypted copy of the recent files to major media outlets, and theyll withhold the encryption key if PWC pays up. And the same time, the other interested parties will be allowed to compete with you. For those that DO want the documents released will have an different address to send to. If $1,000,000 USD is sent to this account below first; then the encryption keys will be made available to the world right away. So this is an equal opportunity for the documents to remain locked away forever or to be exposed before the September 28 deadline, the alleged attackers
wrote in a new post yesterday
that was specifically addressed to PWC.
Security experts were skeptical about the validity of the claims by the anonymous blackmailers, however. Whats interesting about this is that they provided
some
details to indicate its real, but not enough, says Robert Graham, CEO at Errata Security, who says the claims have a 30% chance of being true. The correct way to do this is like with the FBI dump, to provide some independently verifiable details. They didnt do that, so its probably false. To do this correctly, they have to: one, provide a detail that only somebody with the tax returns can know; two, put up the encrypted file as a bittorrent.
Graham also pointed out why the Bitcoins demand just doesnt add up: BitCoins arent anonymous as people think, nor is the market liquid enough to handle a $1 million transaction, he says.
The perpetrators appear to have mixed a little a social engineering to bypass physical security with some basic hoovering of information, mainly from paper to the USB stick. If the story is true, it would be a classic case study in the need to have better physical security, says Stephen Cobb, security evangelist for ESET.
Its unclear whether the attackers actually stole some information from a computer or scanned or photographed hard copies of the returns, he says. It sounds like these were paper records they copied onto the USBs, he says.
And Cobb also concurs that one of the weakest links of the alleged caper is the Bitcoin demand: Getting paid is always the hardest part of a scam, he says. Choosing Bitcoin ... sounds odd.
Have a comment on this story? Please click Add Your Comment below. If youd like to contact
Dark Readings
editors directly,
send us a message
.

Last News

▸ Scan suggests Heartbleed patches may not have been successful. ◂
Discovered: 23/12/2024
Category: security

▸ IoT Devices on Average Have 25 Vulnerabilities ◂
Discovered: 23/12/2024
Category: security

▸ DHS-funded SWAMP scans code for bugs. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
U.S. Secret Service Probes Extortion Attempt Claiming Theft Of Romneys Tax Returns