[BreachExchange] 'Vigilance' hacker charged over Minnesota government attacks

Wed Jun 6 23:18:28 EDT 2018

https://www.theregister.co.uk/2018/06/07/vigilance_hacker_charged/

A 19-year-old who goes by the handle Vigilance online has been indicted in
a Saint Paul, Minnesota district court for allegedly breaking into and
interfering with servers operated by the state.

Vigilance, identified
<https://www.justice.gov/usao-mn/pr/hacker-known-vigilance-arrested-and-charged-series-cyber-attacks-minnesota-state>
 by the US Attorney’s Office in Minnesota as Cameron Thomas Crowley, was
charged by a grand jury on May 22 in a five-count indictment
<https://regmedia.co.uk/2018/06/06/crowley_pdf.pdf> of intentionally
accessing and damaging protected computers, and identity theft.

The charges were made public on Tuesday.

The Twitter account associated with the name Vigilance (@TheeVigilance
<https://twitter.com/TheeVigilance>) lays out the rationale for the
attacks: They were intended to be a reprisal for the acquittal of Saint
Anthony, Minnesota police officer Jeronimo Yanez.

Yanez was charged with manslaughter in the shooting death of Philando
Castile after he shot the man seven times during a traffic stop in 2016. On
June 16, 2017, Yanez was cleared of all charges and also let go by the
Saint Anthony Police Department.

Vigilance, in a statement posted to Twitter and Ghostbin
<https://ghostbin.com/paste/2cvs8>, said the Minnesota hacking attacks
followed from the court verdict: "I have attacked large Minnesotan targets
for one purpose: Retaliation for ex-officer Yanez's acquittal."The police
shooting of Castile received widespread attention in part because Diamond
Reynolds, Castile's girlfriend, streamed [warning, it's unpleasant watching]
 the aftermath <https://www.youtube.com/watch?v=6DUfa4LTgOs> through
Facebook Live.

It goes on to say, ironically as it turned out, "The FBI is set to
investigate me. I am confident my identity is safe."

Vigilance via Twitter took credit for hacking Minnesota's government portal
(MN.gov) and Minnesota State University Moorhead, which acknowledged
<https://news.mnstate.edu/2017/06/following-unauthorized-access-starid-passwords-need-to-be-reset/>
 being attacked on June 20, 2017.

According to the US Attorney's Office, Vigilance's alleged intrusions
resulted in damage and loss to the state of more than $5,000. The Minnesota
Star Tribune last year reported
<http://www.startribune.com/hacker-seeking-justice-for-philando-castile-breaks-into-minnesota-database/429721673/>
 that Vigilance had compromised 23 state databases.

Crowley's federally appointed attorney declined to comment
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riskbasedsecurity.com/pipermail/breachexchange/attachments/20180606/e5004170/attachment.html>