The Malaysian authorities arrested a suspected computer hacker in Kuala Lumpur named Ardit Ferizi. He is alleged to have provided personal data about United States military members to ISIS. To make matters worse, Ardit Ferizi used Twitter and his real name to reach out to ISIS members on the popular social network. Ardit Ferizi is a Kosovo citizen living in Malaysia on a student visa and was studying at the Limkokwing University of Creative Technology in Cyberjaya, Malaysia.
According to the US Department of Justice (DOJ) and the FBI, Ardit Ferizi is alleged to have hacked into the US web hosting company's servers and stole personal data of more than 1,300 US government and military employees. Unlike other breaches of this nature, Ardit Ferizi didn't use the stolen data for identity theft or credit fraud, instead it is alleged that he gave the information to an ISIS member who the DOJ and FBI identified as, Junaid Hussain (also known as Abu Hussain Al Britani), who is an ISIS member and hacker who was killed in a US drone strike in August. It should be known that the stolen data includes names, email addresses, passwords, phone numbers and locations of US military service members and government workers.
To further this supposed hackers stupidity is how he managed to cover his tracks, well lack there of. He is also alleged to have accessed information from an unknown US Internet retailer obtaining credit card data on an estimated 100,000 customers according to his federal indictment that was recently unsealed in Virginia. Ardit Ferizi who was detained by Malaysia authorities is to be faced with an extradition hearing to the United States to stand trial against his charges. If Ardit Ferizi is convicted, he could face more than 35 years in prison.
John P.Carlin, Assistant Attorney General for National Security released a statement (Download
HERE)
This case is a first of its kind and with these charges, we seek to hold Ferizi accountable for his theft of this information and his role in (ISIS) targeting of U.S. government employees
You can download the full complaint
HERETo top himself, Ardit Ferizi, is now dubbed the "Most Careless Hacker Ever" as there were several instances that lead to his easy capture. It appeared that he didn't even attempt to cover his tracks. Not only did he use twitter with his real full name, instead of using some form of direct messaging or even encrypted messaging opted to openly tweet terrorists on the social media network. Furthermore it was identified that he never attempted to mask his IP address by means of a proxy, vpn, or even TOR. Ardit Ferizi is also alleged to be the leader of the Kosova Hacker's Security (KHS) hacking group, which allegedly used Twitter (@Th3Dir3ctorY) to communicate with Junaid Hussain and another ISIS member, named Tariq Hamayun (Abu Muslim Al-Britani).
You think that was all? Nope, he topped himself once again when Ardit Ferizi allegedly hacked into the unnamed US company's servers, he logged in using the account name as KHS, which the FBI guessed was the abbreviation of Ardit Ferizi's hacking collective, 'Kosova Hackers Security.'
Put this one down in the books as one careless hacker.
