Several high-ranking members of an international cybercrime operation stand accused of stealing personal data from more than 15 million customers of popular restaurant and retail chains.
According to the U.S. Department of Justice, the three men – all operating out of Ukraine – were members of the prolific hacking group known as Fin7. The Justice Department says, since 2015, the group targeted the computer systems of more than 100 U.S. companies, mostly in the restaurant and hospitality industry. After a successful data breach, Fin7 would steal valuable consumer data such as credit card information and then sell it on the Dark Web for a profit.
According to Wired, the company operates like a well-organized and disciplined company. Its employees work normal business hours with nights and weekends off. The company also develops its own malware tools and data breach methods.
FIN7 also used a front company, Combi Security, to provide a guise of legitimacy and to recruit hackers. Ironically, the sham company’s website listed multiple U.S. victims among its purported clients.
Here are a few of the high-profile breaches associated with this group:
Chili’s – More than 1,600 Chili’s locations worldwide were affected. It exposed information from consumers who ate at the restaurant between March and April of 2018.
Jason’s Deli – This breach occurred between June and December of 2017. It affected 3.4 million unique payment cards.
Saks Fifth Avenue – More than 5 million customers’ information was released to the Dark Web. The breach lasted from May 2017 until it was discovered nearly a year later.
Each of the three men faces multiple charges including wire fraud and aggravated identity theft.