Back in 2014, a group of hackers were responsible for the now infamous Yahoo hack. It ended up compromising around five hundred million Yahoo accounts. The hack was done via a spear phishing operation.
Information on the hacker responsible for the Yahoo Hack
The hacker is a Canadian who goes under the name of Karim Baratov. He appeared in front of a San Francisco federal court on Tuesday afternoon. He also admitted that his role was to “hack webmail accounts of individuals of interest to the FSB,” the Russian internal security service. Baratov then sent those passwords to his alleged co-conspirator, Dmitry Aleksandrovich Dokuchaev.
Karim was accused of the act back in February of this year. He was arrested in the following month in Ontario. Another three people were indicted with him but they are in Russia. There are unlikely to be extradited to the US.
United States Attorney Brian Stretch had the following to say.
“The illegal hacking of private communications is a global problem that transcends political boundaries. Cybercrime is not only a grave threat to personal privacy and security, but causes great financial harm to individuals who are hacked and costs the world economy hundreds of billions of dollars every year.”
The attack allowed four individuals to gain access to the inside of the Yahoo network. After this access was gained, Alexsey Belan (already wanted in the US) is said to have probed the network for information. He found two assets; one was the Yahoo User Database (UDB) which allows the hackers to trace the location of a target. The second was an administrative tool called Account Management Tool.
Karim’s sentencing hearing has been set for the twentieth of February. This is of the coming year at 3:00 pm in federal court in San Francisco.