The Distributed Denial of Secrets Twitter account has published links to terabytes of data identified as raw data from the Cayman National Bank and Trust; Phineas Fisher (previously), the public-interest hacker(s) behind the Hacking Team breach, is credited with the leak.
On Friday, Fisher claimed to have hacked the bank in 2016 and proposed a “Hacktivist Bug Hunting Program” that would offer bounties of up to $100,000 to those who hacked and dumped documents “in the public interest” from companies such as “South America, Israeli spyware vendor NSO Group, and oil company Halliburton.” The document (which is full of references to Cult of the Dead Cow text files) also outlines a series of techniques for compromising bank security and exfiltrating money.
Cayman National Bank and Trust has confirmed that it suffered a breach.
The Distributed Denial of Secrets tweet links to a slow and overloaded server said to have the files from the breach; an associated torrent file promises access to the same data.
In a Spanish-language “Hack Back” document released with the data, mirrored here in English translation, a person using the pen-name “Subcowmandante Marcos” (presumed to be Fisher) describes their motives: “As long as there is injustice, exploitation, alienation, violence and the ecological destruction, there will come many more like me: an endless series of people who will reject as illegitimate the bad system responsible for this suffering.”
Distributed Denial of Secrets founder Emma Best dedicated the leak Anonymous activist to Jeremy Hammond (previously), who was sentenced to 10 years in prison for his role in hacking and dumping the private intelligence contractor Stratfor.
The Twitter thread associated with the leaks promises “an unprecedented look inside the operations (up to a month ago) of an international bank catering to the rich and powerful and those seeking to hide their activities, as well as of the banking system itself.
Phisher’s manifesto implies that the attack netted more than documents, and may have included the exfiltration of large sums of money. The announcement was tied to the centenary of a politically motivated robbery in Argentina undertaken to exact revenge for the Semana Tragica, a weeklong slaughter of radicals.
(via Four Short Links)
RELEASE: Sherwood – Copies of the servers of Cayman National Bank and Trust (CNBT), which has allegedly been used for money laundering by Russian oligarchs and others.
Includes a HackBack readme explaining Phineas Fisher's hack and exfiltration of funds. https://t.co/xoQLSjBFX3
— Distributed Denial of Secrets (@DDoSecrets) November 17, 2019