Jump to content

Vinny Troia

From Wikipedia, the free encyclopedia
Vinny Troia
EducationPhD
Alma materCapella University, Western Governors University
OccupationResearcher
Years active2018-present
Organizations
  • Night Lion Security
  • Shadowbyte
Known forCyber security
Websitevinnytroia.com

Vincenzo "Vinny" Troia is an American cybersecurity researcher who is known for investigating high profile data breaches and dark web hacking groups, and is the author "Hunting Cyber Criminals". Troia has published research about dark web hacking groups such as The Dark Overlord and Shiny Hunters.

Career

[edit]

Troia serves as owner and CEO of Night Lion Security, a cyber-security firm based in the US, and founded a threat intelligence firm named Shadowbyte.[1]

In 2018, Troia found a data leak of nearly 340 million detailed records about individual people available on a publicly accessible server of Exactis.[2][3]

In 2019, he found a data breach in People Data Labs where records of personal data, including email addresses, employers, locations, job titles, names, phone numbers and social media profiles of 1.2 billion people were exposed.[4][5]

In July 2020, one of Troia's own websites, Data Viper, was hacked. The site contained over 8,200 databases from data breaches.[6][7][8]

In August 2020, Troia wrote a report on the underground cybercrime economy built on the stealing of reselling of video game passwords.[9] The white paper outlines the process by which hackers make money by stealing and reselling Fortnite video game cosmetics, some making nearly a million dollars per year.[10]

In November 2021, hacker Pompompurin, admin of the Dark Web data sharing forum BreachForums, publicly harassed Troia by hacking into the FBI email servers and sending hundreds of thousands of emails to people accusing him of being a part of The Dark Overlord hacking group.[11][12] In addition, Troia claimed that they had previously performed a DDoS attack one of Troia's websites and also hacked the National Center for Missing & Exploited Children's blog to create a fake blog post about him.[13][14][15][16]

Publications

[edit]

Troia is the author of the book "Hunting Cyber Criminals: A Hacker’s Guide to Online Intelligence Gathering Tools and Techniques" (Wiley Books), which illustrates various investigative tools and techniques used to track down and investigate cybercriminals using Open Source Intelligence (OSINT) gathering tools and techniques.[17] The book provides a detailed account of Troia's investigation into cyber criminal hacking group The Dark Overlord.[18]

Troia's book provides evidence and analysis to support claims that the masterminds behind The Dark Overlord cybercrime group are two teenagers living in Calgary, Canada. Evidence provided in the book, as well as a subsequent report published by Troia and Night Lion Security, attempts to link the members of The Dark Overlord hacking group to other "database focused" hacking groups such as ShinyHunters and GnosticPlayers.[19]

References

[edit]
  1. ^ "Hacker breaches security firm in act of revenge". ZDNet.
  2. ^ "Exactis said to have exposed 340 million records in massive leak". CNET.
  3. ^ "A New Data Leak Reportedly Exposed 230 Million Americans' Personal Information". fortune.com.
  4. ^ Reichert, Corinne. "1.2 billion records exposed in unsecured database". www.cnet.com.
  5. ^ Newman, Lily Hay. "1.2 Billion Records Found Exposed Online in a Single Server". Wired.com.
  6. ^ "Breached Data Indexer 'Data Viper' Hacked – Krebs on Security". 2020-07-13. Retrieved 2024-07-25.
  7. ^ "Breach database company DataViper allegedly hacked with billions of records offered for sale". SiliconANGLE. 2020-07-13. Retrieved 2024-07-25.
  8. ^ Cimpanu, Catalin (12 July 2020). "Hacker breaches security firm in act of revenge". ZDNet. Retrieved 6 December 2024.
  9. ^ Winder, Davey. "Fortnite Hackers Earn $1 Million A Year—Stealing Your Skins". Forbes.
  10. ^ "Fortnite Hackers Earn $1 Million A Year—Stealing Your Skins". Forbes. Retrieved 21 April 2023.
  11. ^ "Hackers compromise FBI email system, send thousands of messages". Reuters. Archived from the original on 2023-12-01. Retrieved 2024-12-25.
  12. ^ Lyngaas, Sean (2021-11-13). "Fake FBI emails about a sophisticated attack are part of 'ongoing situation,' agency says | CNN Politics". CNN. Retrieved 2024-12-25.
  13. ^ Vavra, Shannon (2021-11-17). "Wait—The FBI Got Hacked Over a Beef With a Guy Named Vinny?". The Daily Beast. Retrieved 2024-07-25.
  14. ^ Roth, Emma (2021-11-14). "The FBI's email system was hacked to send out fake cybersecurity warnings". The Verge. Retrieved 2024-07-25.
  15. ^ "FBI system hacked to email 'urgent' warning about fake cyberattacks". www.bleepingcomputer.com.
  16. ^ "FBI Email Hoaxer ID'ed by the Guy He Allegedly Loves to Torment". threatpost.com. 2021-11-16. Retrieved 2024-07-25.
  17. ^ "Book Review of "Hunting Cyber Criminals: A Hacker's Guide to Online Intelligence Gathering Tools and Techniques"". www.rsaconference.com. 14 February 2021.
  18. ^ Troia, Vinny (January 2020). Hunting Cyber Criminals. Wiley. pp. 440–443. ISBN 978-1-119-54099-1. Retrieved 23 December 2020.
  19. ^ "The Dark Overlord report: An Investigation Into A Cyber Terrorist Hacking Group". Night Lion Security. 16 July 2020. Retrieved 17 July 2023.