{
  "Event": {
    "analysis": "2",
    "date": "2010-11-18",
    "extends_uuid": "",
    "info": "[Threat Intel] Federal Reserve Hacker Steals 400,000 Credit Card Numbers: Feds",
    "protected": false,
    "publish_timestamp": "1780039703",
    "published": true,
    "threat_level_id": "2",
    "timestamp": "1772901963",
    "uuid": "77f41aa9-416e-407a-900d-02f64b67ab2e",
    "Orgc": {
      "name": "Rectifyq",
      "uuid": "cd9bd516-61fa-476b-980f-2f8de03992d4"
    },
    "Tag": [
      {
        "colour": "#ffffff",
        "local": false,
        "name": "tlp:clear",
        "relationship_type": ""
      },
      {
        "colour": "#004646",
        "local": false,
        "name": "type:OSINT",
        "relationship_type": ""
      },
      {
        "colour": "#b8ab01",
        "local": false,
        "name": "misp-galaxy:target-information=\"United States\"",
        "relationship_type": ""
      },
      {
        "colour": "#0088cc",
        "local": false,
        "name": "misp-galaxy:sector=\"Finance\"",
        "relationship_type": ""
      },
      {
        "colour": "#49a260",
        "local": false,
        "name": "rectifyq:category=\"threat\"",
        "relationship_type": ""
      },
      {
        "colour": "#f1dfed",
        "local": false,
        "name": "rectifyq:TA-category=\"Cybercrime\"",
        "relationship_type": ""
      },
      {
        "colour": "#d92121",
        "local": false,
        "name": "rectifyq:target=\"targeted\"",
        "relationship_type": ""
      },
      {
        "colour": "#fdcb58",
        "local": false,
        "name": "rectifyq:MY-relevancy=\"somewhat-relevant\"",
        "relationship_type": ""
      },
      {
        "colour": "#b94b1d",
        "local": false,
        "name": "rectifyq:mitre-att&ck=\"none-from-src\"",
        "relationship_type": ""
      },
      {
        "colour": "#0088cc",
        "local": false,
        "name": "misp-galaxy:country=\"malaysia\"",
        "relationship_type": ""
      },
      {
        "colour": "#0088cc",
        "local": false,
        "name": "misp-galaxy:financial-fraud=\"CNP \u2013 Card Not Present\"",
        "relationship_type": ""
      },
      {
        "colour": "#0088cc",
        "local": false,
        "name": "misp-galaxy:financial-fraud=\"Compromised Payment Cards\"",
        "relationship_type": ""
      }
    ],
    "Attribute": [
      {
        "category": "External analysis",
        "comment": "",
        "deleted": false,
        "disable_correlation": false,
        "timestamp": "1740315538",
        "to_ids": false,
        "type": "link",
        "uuid": "5e829844-58cb-4fc6-8756-c3e1ca9cbea1",
        "value": "https://databreaches.net/2010/11/18/federal-reserve-hacker-steals-400000-credit-card-numbers-feds/"
      },
      {
        "category": "Attribution",
        "comment": "",
        "deleted": false,
        "disable_correlation": false,
        "timestamp": "1740315545",
        "to_ids": false,
        "type": "threat-actor",
        "uuid": "67ae6132-0d71-4194-afaf-beca3be3119f",
        "value": "Lin Mun Poo"
      },
      {
        "category": "External analysis",
        "comment": "",
        "deleted": false,
        "disable_correlation": false,
        "timestamp": "1740315652",
        "to_ids": false,
        "type": "link",
        "uuid": "9b44ef17-b6e1-44a9-bbf1-135418f9229f",
        "value": "https://www.databreaches.net/malaysian-national-indicted-for-hacking-into-federal-reserve-bank/"
      },
      {
        "category": "External analysis",
        "comment": "",
        "deleted": false,
        "disable_correlation": false,
        "timestamp": "1740315751",
        "to_ids": false,
        "type": "link",
        "uuid": "4641ba79-bb9d-4633-bc89-d718cfd78500",
        "value": "https://databreaches.net/2011/04/13/malaysian-national-admits-to-hacking-into-the-federal-reserve-bank-of-cleveland-fedcomp-and-others/"
      },
      {
        "category": "External analysis",
        "comment": "",
        "deleted": false,
        "disable_correlation": false,
        "timestamp": "1740315772",
        "to_ids": false,
        "type": "link",
        "uuid": "ed3bc85a-046b-479b-912e-d805b891d2dd",
        "value": "https://www.justice.gov/archive/usao/nye/pr/2011/2011nov04.html"
      },
      {
        "category": "Other",
        "comment": "",
        "deleted": false,
        "disable_correlation": false,
        "timestamp": "1740315794",
        "to_ids": false,
        "type": "text",
        "uuid": "0a4cc7a8-2005-4cd1-91d4-b5be103f7e7b",
        "value": "Lin Mun Poo, a Malaysian citizen who hacked into the Federal Reserve Bank and various private financial institutions, was sentenced today to 10 years of imprisonment by United States District Judge Dora L. Irizarry. On April 13, 2011, Poo pled guilty to access device fraud in connection with possessing stolen bank card and credit card numbers and admitted that he compromised a computer server belonging to the Federal Reserve Bank and installed a malicious software code onto that server.\r\n\r\nThe sentence was announced today by Loretta E. Lynch, United States Attorney for the Eastern District of New York, and Brian G. Parr, Special Agent-in-Charge, United States Secret Service, New York Field Office.\r\n\r\nPoo traveled to the United States on October 21, 2010, for the purpose of selling stolen credit card and bank card numbers but, unbeknownst to him, the purchaser was an undercover Special Agent of the United States Secret Service. At the time of his arrest, Poo possessed over 122,000 stolen bank card and credit card numbers in his heavily encrypted laptop computer and admitted that he \u201chack[ed] computers for money.\u201d Poo\u2019s computer also contained logs of \u201cchats,\u201d or online instant messaging communications, in which he discussed his business of obtaining and selling stolen bank account information to co-conspirators around the world, who would encode that information onto plastic cards for the purpose of making fraudulent ATM withdrawals and credit card purchases. Poo\u2019s cybercrime activities also extended to the national security sector \u2013 in 2010, he hacked into the computer system of a Department of Defense contractor that provides systems management services for military transport and other military operations, potentially compromising highly sensitive military logistics information.\r\n\r\n\u201cLin Mun Poo is responsible for victimizing public and private financial institutions here and around the world, as well as potentially endangering our national security infrastructure,\u201d stated United States Attorney Lynch. \u201cToday\u2019s sentence sends the message to hackers around the world that the United States is no place to conduct their business.\u201d Ms. Lynch extended her grateful appreciation to the Computer Crimes and Intellectual Property Section and the Office of International Affairs of the Justice Department\u2019s Criminal Division for their invaluable assistance in this case.\r\n\r\n\u201cThe Secret Service has taken an aggressive stance in the investigation of computer intrusions and other cybercrimes,\u201d said Secret Service Special Agent-in-Charge Parr. \u201cThe success of this investigation is a testament to the dedicated efforts of the Secret Service in pursuing cybercriminals, both within the U.S. and internationally.\u201d\r\n\r\nThe government\u2019s case was prosecuted by Assistant United States Attorneys Cristina M. Posa and Melissa B. Marrus.\r\n\r\nThe Defendant:\r\n\r\nLIN MUN POO\r\nAge: 32"
      }
    ]
  }
}