Breached in 2012, LinkedIn and Dropbox still remain in the top 35 leaderboard of the biggest breaches of all time.
Finally, eight years later, Yevneniy Nikulin has been found guilty of hacking into their networks and selling the stolen user information and credentials databases on a cybercrime forum. With an additional hack into social network, Formspring, Nikulin has exposed and circulated credentials and personally identifiable information (PII) for over 225 million people.
Last week in San Francisco, after just six hours of deliberation by the jury, Nikulin was found guilty. “Nikulin’s conviction is a warning to would-be hackers, wherever they may be,” said US Attorney David L. Anderson. “Computer hacking is not just a crime, it is a direct threat to the security and privacy of Americans. American law enforcement will respond to that threat regardless of where it originates.” 32-year-old Nikulin is scheduled to be sentenced in September. According to prosecutors, he could face up to 10 years in prison for each count of selling stolen usernames and passwords, installing malware on protected computers. In addition, Nikulin could be sentenced for up to five years for each count of conspiracy and computer hacking, and faces a mandatory two year sentence for identity theft.