Matthew Earl, managing partner of Shadowfall Capital, shares his harrowing experience of being targeted in a hacking campaign while investigating Wirecard AG. Joining him is John Scott-Railton from Citizen Lab, discussing the relentless phishing attacks from the Dark Basin hacking group. They delve into the darker side of corporate fraud and the psychological toll on whistleblowers, exploring methods used by hackers to undermine accountability, particularly regarding climate change misinformation. The conversation sheds light on ethical dilemmas in the digital landscape.
The podcast highlights the ethical battle between good and evil hackers, showcasing their different approaches and tactics.
The story of Matthew Earle exposes the dark side of the internet, with a bad company hiring hackers to target individuals.
Citizen Lab's investigation into Dark Basin reveals the extent of this mercenary hacking group and highlights the challenges of attribution and legal limitations.
Deep dives
Good versus evil: The unfair fight
In the podcast episode, the speaker discusses the concept of good versus evil and the unequal nature of this battle. The good team, characterized by ethics and morals, adheres to a fair and lawful approach, while the evil team lacks virtues and is willing to break rules and play dirty to succeed. The speaker highlights that hackers on the evil team have no qualms about using deception, lies, threats, and illegal activities to achieve their goals, while hackers on the good team adhere to moral codes and integrity. The speaker reflects on the difficulty of distinguishing between good and evil and right and wrong in real-life scenarios. Furthermore, the podcast emphasizes a story involving a bad company hiring a group of hackers to target good individuals, showcasing the dark side of the internet.
Matthew Earle's confrontation with Dark Basin and Beltrocks
The podcast delves into the story of Matthew Earle, a short-focused firm manager who discovered the German payment company Wirecard engaged in questionable practices. Matthew suspected accounting fraud and potential money laundering activities. He published an anonymous report outlining these allegations. Subsequently, he faced significant backlash, including threats, surveillance, and hacking attempts. Matthew's investigation uncovered a hacker group named Dark Basin. The podcast explores how Dark Basin targeted individuals critical of Wirecard and engaged in fishing attacks and surveillance. It also reveals the involvement of a suspicious Indian cybersecurity firm, Beltrocks, allegedly linked to this hacking group.
Citizen Lab's investigation into Dark Basin
Citizen Lab, an organization focused on protecting digital rights and accountability, took an interest in investigating Dark Basin. Their research involved analyzing the fishing links and emails used by Dark Basin. Tracking IP addresses, time stamps, and patterns in the fishing attacks revealed a connection to India and the activities of an Indian cybersecurity company called Beltrocks. Citizen Lab concluded that Dark Basin was a mercenary hacking group working on behalf of various clients, including private investigators, corporate firms, and even potentially larger companies like Wirecard and Exxon. The investigation shed light on the far-reaching nature of Dark Basin and its potential threats to democracy.
The elusiveness of attribution and legal limitations
The podcast delves into the challenges of attribution and legal limitations faced by organizations like Citizen Lab. While significant evidence points towards Beltrocks as the entity behind Dark Basin, proving direct involvement of larger companies like Wirecard or Exxon is challenging and would require investigation by law enforcement agencies with the authority to access certain resources. Moreover, Citizen Lab emphasizes that organizations can only go as far as permitted by law in their investigations. Dark Basin serves as a reminder of the threats posed by hacking-for-hire operations and the need for platforms and institutions to address this issue.
The aftermath: Wirecard's collapse and vindication for victims
The conclusion of the podcast highlights the subsequent collapse of Wirecard, a verification of the concerns raised by Matthew Earle and others. Following the release of the Citizen Lab report, which exposed Dark Basin and its ties to Beltrocks, Wirecard faced serious financial mismanagement allegations. The company filed for insolvency and its former executives faced legal consequences. This outcome served as vindication for the targets of Dark Basin, who had been surveilled, threatened, and targeted in fishing attacks for years. The involvement of reputable organizations like Citizen Lab added credibility to their experiences and shed light on the truth behind their ordeal.
What do you do when you find yourself the target of a massive hacking campaign, and you are getting thousands of phishing emails and someone following you in your car. You might turn to Citizen Lab who has the ability to research who is behind this and help bring the hackers to justice.
Our guests this episodes are Adam Hulcoop and John Scott-Railton of Citizen Lab. This episode also has an interview with Matthew Earl of Shadowfall.
Sponsors
Support for this show comes from LastPass by LogMeIn. LastPass is a great password manager but it can do so much more. It can setup 2FA for your company, or use it to monitor what your users are doing in the network. Visit LastPass.com/Darknet to start your 14 day free trial.
Support for this show comes from Blinkist. They offer thousands of condensed non-fiction books, so you can get through books in about 15 minutes. Check out Blinkist.com/DARKNET to start your 7 day free trial and get 25% off when you sign up.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
