You've successfully subscribed to INFIMA Security
Great! Next, complete checkout for full access to INFIMA Security
Welcome back! You've successfully signed in.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info is updated.
Billing info update failed.

Hacker? Instagram Influencer? Or Is He Both?

Ever wonder what hackers do with all that stolen money?

Hushpuppi - Hacker, influencer, con man

Obnoxious and arrogant.

That might fit for a lot of Insta-peeps, but this one takes the cake.

Boasting about his wealth while calling some of his 2.5 million Instagram followers “peasants,” Hushpuppi also appeared to have an ego that was criminally large.

Yep. Hushpuppi. He wins the prize for his overt over-consumption. Sadly, there are 2.5 million "peasants" (his words, not ours!) watching his every flashy move, thinking he had made all of his millions from legitimate sources, like real estate investing. Again, his claim.

“Hushpuppi” tooled around the world in a Ferrari and a Maybach, ordered crates of champagne at nightclubs and sported $150,000 diamond-festooned wristwatches.

And where exactly did he get all this money?

"Bossman Hush" appears to have a long list of ways he affords his posh lifestyle, though none involve legitimate real estate investing. According to Interpol and the FBI, Hush's actual professions include things like "money laundering, wire fraud and Internet scams."

Hush and crew stand accused of running scams that netted some $456 million.

Whoa! That's nearly a half billion dollars!!

That's a lot of Phishing emails. And that's exactly how his operation worked - using spoofed or lookalike domains and email addresses.

Basically, they created email addresses just a couple letters off from ones for law firms and other “businesses that perform wire-transfer payments.” - US Secret Service

This form of Phishing is known as Business Email Compromise. It's a common cybercriminal tactic, and it can lead to huge losses for victims - aka more private jet rides and Fendi shopping sprees for hackers.

Hushpuppi (born Ramon Abbas in Lagos, Nigeria) cut his teeth on the old "Nigerian Prince" scams. Hush was quickly "a rising star" in those days, and he eventually moved on to bigger fish (or Phish).

In the early days, they used emails to scam money out of individuals, using those notorious Nigerian Prince scams. As new tools evolved for scaling up these operations, Hush and team began targeting businesses. Not shockingly, businesses offer much larger wins for these hackers.

Despite the shift in focus from individuals to companies, the foundation of these attacks remains the same. In every case, these hackers exploit people, whether sitting at home or in an office. People can be fooled over email, and Hush knows how to do it.

The good news is that these hacks can be stopped!

The first step is training your team to avoid the initial Phishing email, the ones that Hush's team send out every single day.

Are you ready to take action?
We make it easy to protect your team from attacks just like this one. Find out how to protect your team with INFIMA's Automated Security Awareness platform.

To get a quote, set up a call with our (non-pushy) sales team here!

Original article here.

Joel Cahill

Cyber security enthusiast. Entrepreneur.