Hackers made death threats against this security researcher. Big mistake.

· Source: MIT Technology Review Narrated · Field: Technology & Digital — Cybersecurity & Data Privacy, Data Science & Analytics · Depth: Novice, extended

Summary

Allison Nixon, Chief Research Officer at Unit 221B, became a target of death threats and AI-generated nudes from online personas Waifu and Yudisha in April 2024. This harassment stemmed from her decade-long career tracking cybercriminals, particularly members of "the comm," a loosely affiliated subculture of anarchic hackers. Nixon's work has led to the arrest of over two dozen comm members, who are involved in activities ranging from DDoS attacks and SIM swapping to crypto theft, ransomware, corporate data theft, and offline violence like swatting and sextortion. The comm's influence has grown, with its members, primarily teens and young adults, escalating their criminal activities and financial motivations since 2018, affecting major companies like AT&T, Microsoft, and Uber. Nixon's proactive investigative approach involves lurking in online forums, engaging with perpetrators, and meticulously preserving chat logs to unmask identities and anticipate emerging threats.

Key takeaway

For cybersecurity leaders assessing emerging threats, Allison Nixon's success against "the comm" highlights the value of long-term, proactive intelligence gathering on seemingly minor groups. Your teams should prioritize monitoring nascent criminal communities and preserving their digital footprints, even if immediate impact seems low, as these groups often escalate their capabilities and targets over time. This foresight can provide critical dossiers for law enforcement when these actors eventually become major threats.

Key insights

Proactive intelligence gathering and persistent tracking are crucial for unmasking evolving cybercriminal groups and anticipating their next moves.

Principles

Method

Investigators can unmask anonymous online personas by drawing an "investigative circle" around targets and their associates, analyzing interactions, and cross-referencing clues from enemies and ex-partners.

In practice

Topics

Best for: CTO, VP of Engineering/Data, Director of AI/ML, Security Engineer, Research Scientist, Tech Journalist

Related on AIssential

Open in AIssential →

Editorial summary, takeaway, and curation by AIssential. Original article published by MIT Technology Review Narrated.