Department of Justice (DOJ)

DOJ Announces Indictment of Russian Hackers for Destructive Cyber-Attacks, Including Deployment of NotPetya and Olympic Destroyer Malware

October 21, 2020 By Emily Poole

On October 19, 2020, the Department of Justice (DOJ) announced that six Russian GRU officers had been charged in connection with a series of destructive cyber-attacks that affected victims around the globe and caused billions of dollars of damage. The Russian hackers are alleged to be a part of the group known as Sandworm, which […]

DOJ Indicts Chinese Military Personnel for Involvement in 2017 Equifax Breach

February 11, 2020 By Emily Poole

On February 10, 2020, the U.S. Department of Justice announced charges against four members of China’s People’s Liberation Army (“PLA”) for their alleged involvement in the 2017 Equifax hack that resulted in the theft of the personal information of 145 million Americans. In the nine-count indictment, the four individuals, Wu Zhiyong, Wang Qian, Xu Ke, […]

Treasury Announces Sanctions Against Cybercriminal Group Behind ‘Dridex’ Malware, Offering Mitigation Strategies for Businesses

December 11, 2019 By Emily Poole

On December 5, 2019, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) issued sanctions against Evil Corp, a Russian cybercriminal organization that is known for distributing the Dridex malware. Dridex is a banking trojan that has been used to target financial institutions across the globe and has resulted in more than $100 million […]

DOJ Announces Indictment of Chinese Hackers

January 2, 2019 By Emily Poole

On December 20, 2018, the Department of Justice and the FBI announced the indictment of two Chinese hackers, Zhu Hua and Zhang Shilong, who have been charged in a years-long global hacking campaign that resulted in the theft of sensitive information from companies and government agencies around the world. The two hackers, members of the […]

DOJ Issues Data Breach Guidance

April 29, 2015 By Privacy & Data Security Team

On Wednesday, April 29, 2015, the Department of Justice Computer Crime and Intellectual Property Section (CCIPS) Cybersecurity Unit issued new, detailed guidance on data breach incident response best practices. The document was announced at an invitation-only round table hosted by DOJ and provides guidance on what DOJ regards as “best practices for victims and potential […]