Vulnerabilities / Threats
12/17/2010
01:04 PM
Connect Directly
RSS
E-Mail
50%
50%

FBI Arrests Four For Insider Trading

Federal authorities allege tech firm insiders sold confidential information relating to Apple, AMD, Dell, Flextronics, and Taiwan Semiconductor.

Federal Bureau of Investigation (FBI) authorities have arrested multiple people on charges of insider trading, including selling confidential information about Apple, AMD, Dell, Flextronics, and Taiwan Semiconductor Manufacturing Company, for a total of more than $400,000.

A complaint unsealed in Manhattan federal court on Wednesday alleges that four insiders at technology companies participated in telephone calls with clients of investment research firm Primary Global Research (PGR) in the guise of "consulting," and that those customers included at least two hedge funds, which were not named in the complaint.

On Wednesday, authorities made four arrests related to the charges outlined in the complaint. These include Mark Anthony Longoria, who worked for Advanced Micro Devices (AMD), Water Shimoon of Flextronics, and Manosha Karunatilaka, who was employed by Taiwan Semiconductor Manufacturing Company. According to the complaint, Longoria received $200,000 from PGR, while the others respectively netted $22,000 and $35,000.

In addition, authorities announced that last Friday, Daniel Devore -- formerly a global supply manager for Dell, and who likewise worked as a consultant for PGR -- pled guilty to wire fraud and conspiracy to commit wire fraud and securities fraud charges. They said Devore received about $145,750 from PGR for providing confidential information.

Also arrested on Wednesday was James Fleishman, VP of sales at PGR. Authorities allege that he arranged meetings between the consultants trading in insider information and PGR's clients, and have charged him with wire fraud and conspiracy charges for conspiring to provide confidential information to those clients.

"Today's charges allege that a corrupt network of insiders at some of the world's leading technology companies served as so-called 'consultants' who sold out their employers by stealing and then peddling their valuable inside information," said Manhattan U.S. Attorney Preet Bharara in a statement.

"The information trafficked by the four 'consultants' went way beyond permissible market research; it was insider information," said FBI assistant director-in-charge Janice K. Fedarcyk in a statement. "And the fifth defendant was directly involved in the transfer of inside information from the consultants to hedge funds and other end users."

For example, the complaint alleges that Shimoon sold Apple's sales forecast data, as well as forthcoming iPhone features. It also mentions "cooperating witnesses" who detailed phone calls with Longoria, during which he shared AMD's "revenue information, average sales prices, product sales figures, and gross margin information."

SEE ALSO:

Defense Department Aligning Insider Threat Detection

Former IT Director Imprisoned For Hacking Employer's Servers

DARPA Developing Tech To Stop Insider Threats

Feds Bust Akamai Insider

Database Admin Gets 12 Months For Hacking Employer

Internal Sabotage Security Risks Rising

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, September 16, 2014
Malicious software is morphing to be more targeted, stealthy, and destructive. Are you prepared to stop it?
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3090
Published: 2014-09-23
IBM Rational ClearCase 7.1 before 7.1.2.15, 8.0.0 before 8.0.0.12, and 8.0.1 before 8.0.1.5 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.

CVE-2014-3101
Published: 2014-09-23
The login form in the Web component in IBM Rational ClearQuest 7.1 before 7.1.2.15, 8.0.0 before 8.0.0.12, and 8.0.1 before 8.0.1.5 does not insert a delay after a failed authentication attempt, which makes it easier for remote attackers to obtain access via a brute-force attack.

CVE-2014-3103
Published: 2014-09-23
The Web component in IBM Rational ClearQuest 7.1 before 7.1.2.15, 8.0.0 before 8.0.0.12, and 8.0.1 before 8.0.1.5 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http...

CVE-2014-3104
Published: 2014-09-23
IBM Rational ClearQuest 7.1 before 7.1.2.15, 8.0.0 before 8.0.0.12, and 8.0.1 before 8.0.1.5 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.

CVE-2014-3105
Published: 2014-09-23
The OSLC integration feature in the Web component in IBM Rational ClearQuest 7.1 before 7.1.2.15, 8.0.0 before 8.0.0.12, and 8.0.1 before 8.0.1.5 provides different error messages for failed login attempts depending on whether the username exists, which allows remote attackers to enumerate account n...

Best of the Web
Dark Reading Radio