Milan’s postal police, coordinating Rome’s postal police and Milan’s prosecution, today ended an operation that made it possible to disrupt a criminal system “for the purpose of violating, by computer intrusion, video surveillance systems mostly installed in private homes, but also in changing rooms in gyms, swimming pools, private studios, etc. “.
The intrusion into private video surveillance systems was used to steal and spread harsh images
Milan, spying on unsuspecting citizens in their homes, changing rooms in gyms, swimming pools, private studios,#Politipost identifies two criminal groups who violated video surveillance systems with computer hacking# before always # 8 June pic.twitter.com/m537r0VFlG
– State Police (@poliziadistato) June 8, 2022
The operation, which involved 10 cities across the country, ended with just as many home and computer searches and the seizure of a large amount of computer equipment.
“Thanks to a complex and articulate legal police activity – reported the police – which lasted over a year and ended in recent days with 10 searches conducted throughout the national area, the Milan State Police, coordinated by the Public Prosecutor’s Office Repubblica di Milano, managed to disrupt a real criminal ‘system’ aimed at infringing, by means of computer hacking, of video surveillance systems installed mostly in private homes “.
The postal police investigators discovered the disturbing phenomenon thanks to the report from a citizen and the development of the forensic analysis carried out on the smartphone seized from one of the suspects in connection with another criminal case involving crimes of another Grade.
“The reconstruction of the criminal chain and the identification of the perpetrators of the illegal behavior – explains the police – have involved an extraordinary investigative effort, also given the measures taken by criminal associations to anonymize themselves on the Internet and escape enforcement actions by the authorities” .
“In connection with the two criminal groups discovered by the investigators (one of which – the most significant – a real criminal association is set up), the suspects had well-defined roles and tasks: the most expert in computer science scanned the network looking for video surveillance systems connected to the Internet; once identified, they made them the subject of real cyberattacks, which made it possible under certain conditions to detect the password of the NVRs (ie the digital video recorders to which the video surveillance cameras are normally connected) and to access the related ones. systems “.
Once the access information was collected, the other belonging to the two criminal groups was tasked with verifying the type of systems, the framed environments, and the quality of the footage to identify cameras filming particularly “intimate” locations. such as bathrooms and bedrooms. The ultimate goal was actually to steal images that portray the unsuspecting victims during the execution of sexual intercourse or autoerotic acts.
In some cases, the images referred to cameras installed in hotels, doctors’ offices and changing rooms in gyms and swimming pools. At the end of this election, the access information was handed over to other employees, who through online “showcases” created ad hoc put them up for sale on the network. Illegal revenue was reinvested in the purchase of increasingly up-to-date software to carry out cyber attacks.
The virtual sites that the suspects chose for their illegal purposes, in the illusory hope of remaining anonymous, were the social network “ВКонтакте” (“VKontakte”, abbreviated VK, known as the Russian version of Facebook) and Telegram.
At the conclusion of the searches, investigators from Milan, Naples and Catania’s postal police seized 10 smartphones, 3 workstations, 5 laptops, 12 hard drives and various cloud storage for a total storage capacity of over 50 terabytes. In addition, all the social accounts used by the suspects for the commission of the criminal conduct and several thousand euros (also in cryptocurrency) were seized.