Thursday, October 10, 2024
HomeCyber CrimeEx-Cybersecurity Consultant Jailed For Trading Confidential Data

Ex-Cybersecurity Consultant Jailed For Trading Confidential Data

Published on

Vincent Cannady, a professional who used to work as a consultant in the cybersecurity field, has been taken into custody for allegedly trying to extort a sum of money that could go up to $1.5 million from an IT company that is publicly traded.

He explicitly threatened to publicly disclose the company’s sensitive and confidential information unless his demands were met.

U.S. Attorney Damian Williams said: “As alleged, Vincent Cannady used illegal and excessive threats to obtain over a million dollars in payments from a public company after his engagement was terminated.

- Advertisement - EHA
Document

Integrate ANY.RUN in Your Company for Effective Malware Analysis

Are you from SOC, Threat Research, or DFIR departments? If so, you can join an online community of 400,000 independent security researchers:

  • Real-time Detection
  • Interactive Malware Analysis
  • Easy to Learn by New Security Team members
  • Get detailed reports with maximum data
  • Set Up Virtual Machine in Linux & all Windows OS Versions
  • Interact with Malware Safely

If you want to test all these features now with completely free access to the sandbox:

When those entrusted with sensitive information steal that information on their way out the door, only to extort money with a threat of releasing that information, my Office will hold them responsible for their conduct.”

Cannady had been assigned to assess and fix potential vulnerabilities in the company’s information systems.

This position gave him access to sensitive data, which he later used to leverage his extortion demands after his engagement with the company was terminated.

Demands And Threats

In an attempt to seek justice, he pressed the company to address his allegations of discrimination and the emotional distress that he had suffered. He went as far as to threaten to make the documents public if the company failed to take action.

“[a]s we all know those documents will imperil [the company’s] reputation and shake investor confidence,” CANNADY added.

Cannady specifically requested a 10-year Certificate of Deposit worth $1.5 million and a gag order to prevent him from discussing any information related to the company.

Cannady is charged with Hobbs Act extortion and faces a maximum sentence of 20 years in prison. The charge is an accusation; he is presumed innocent until proven guilty. 

The U.S. Attorney’s Office is prosecuting the case for the Southern District of New York.

Is Your Network Under Attack? - Read CISO’s Guide to Avoiding the Next Breach - Download Free Guide

Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

Mozilla Warns Of Firefox Zero-Day Actively Exploited In Cyber Attacks

A critical use-after-free vulnerability affecting Firefox and Firefox Extended Support Release (ESR) is being...

SpyCloud Embeds Identity Analytics in Cybercrime Investigations Solution to Accelerate Insider and Supply Chain Risk Analysis & Threat Actor Attribution

IDLink, SpyCloud’s new automated digital identity correlation capability, is now core to its industry-leading...

Abusix and Red Sift Form New Partnership, Leveraging Automation to Mitigate Cyber Attacks

The agreement has marked over 600,000 fraudulent domains for takedown in just two months...

Hackers Exploiting Zero-day Flaw in Qualcomm Chips to Attack Android Users

Hackers exploit a zero-day vulnerability found in Qualcomm chipsets, potentially affecting millions worldwide.The flaw,...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Mozilla Warns Of Firefox Zero-Day Actively Exploited In Cyber Attacks

A critical use-after-free vulnerability affecting Firefox and Firefox Extended Support Release (ESR) is being...

Dark Angels Ransomware Attacking Windows And Linux/ESXi Systems

The sophisticated ransomware group Dark Angels, active since 2022, targets large companies for substantial...

Critical Automative 0-Day Flaws Let Attackers Gain Full Control Over Cars

Recent discoveries in the automotive cybersecurity landscape have unveiled a series of critical zero-day...