The National Court Lawyer’s Office is demanding Three years in jail For Jose Louis Hurdas, also known as Alkasek, for hitting the CGPJ’s judicial neutral point website. Hacker was able to extract Bank data of more than 571,000 taxpayersOvarian An offensive It allowed him to get a millionaire profit to sell this information.
In the abbreviation of charge The most qualified quest of late confessionThis reduces the demand for condemnation for continuous crimes of illegal access and illegal access to computer systems. His cooperation for justice has been allowed Seizure of 863,000 euros From the sale of stolen data.
Others in the case
The situation is different for the other two defendants. To Daniel PalmalloAnother hacker involved, asks the state side 4 years and 4 months in prison To a continuous crime Illegal access to computer settings And the discovery of the secrets is another. In addition, it is considered the necessary cooperation in the manifestation of alkasek’s alleged secrets.
The third defendant, Juan Carlos Oh.Face 3 years and 4 months in prison As a teacher of the crime of finding secrets. According to the investigation, the latter bought 1,247,727 logs Value 109.876 Euros With the purpose of making a profit with them.
Computer access method
The sophisticated attack began In October 2021, when Alcacek appointed two mass storage systems With a Lithuanian company using the email account created during your minority to hide your identity.
Con Illegal enrichmentHe is a boslo a Digital Certificate stolen DGD was awarded by FNMT. This certificate allowed you to connect to the distance with the transport systems and to access the police network through the Internal IP address of the Public Police Department.
Using this evidence, he did 876 links Between July 2022 and its detected date for the National Police Port. These facts are being heard separately in Madrid’s 50 instruction court.
Infiltration in the judicial system
Once the police entered the Intranet, they were able to get evidence from a national police officer and go via REd Sarah (Settlement of Application and Networks System for Administration).
This access allowed him to connect to the CGPJ’s Judicial Middle Point, where he received the credentials of a Pilbao court user, and he used to check the system’s operation.
Accompanied by Pamallo, they created a Website It was simulated as an access portal for PNJ to capture more credentials. Pamallo appointed the malicious domain “CGPJ-PNJ.com” with a sub-domain pointed out at an IP address located in Russia.
The massive theft of data
After approaching PNJ with the captured credentials, Alkasek He sent communications to different courts with the connections that had been returned to his wrong pageThus obtaining keys to other users of the judiciary.
With the credentials of two judicial authorities that fell into the trap, he did 438,099 requests “Extended Bank Accounts” to Web Service Line firmIt was followed by the second attack.
CGPJ prevented accounts that promised to find suspicious activity And put the facts to the knowledge of the National Court. With the help of the National Cryptopoly Center, the simulated page prevents.
The purpose of the attack and the sale of data
According to CCN, the data -affected companies were Catastre, Tax Company, DGD, INE, Social Security, Sep and National Police. The tax agency confirmed that these mass consultations were affected 571,210 Natural PersonsCustomized suggestions were previously affected 373 NIF numbersSome belong to the general fit.
For the market stolen data, Alcachec created the “USMS” portal where it was introduced 574,908 records Extracted from PNJ. Transactions were made by “Blissio” cryptocurrency allowances.
AdvertisementPortal, which came 17 databases For sale, it was 1,746 users registeredThere 518 Purchase made More than 30 million posts soldCreating income 1.866.175 Euros.
