Jan 9, 2022
73 Views
0 0

The Spine Collector: Man arrested for using fake email addresses to steal hundreds of unpublished manuscripts

Written by

How can we help?

Your Account
Log in to your Bitdefender account and manage security for what matters.
Complete protection and unlimited VPN for 10 users.
Complete protection for 5 or 10 devices. Limited VPN.
Windows only security with limited VPN.
Basic protection for Windows only.
Basic protection for Mac only.
Ultra-fast VPN that keeps your online identity and activities safe from hackers, ISP’s and snoops.
Live Support offered by certified experts
Live Support offered by certified experts
Live Support offered by certified experts
Live Support offered by certified experts
Prevention, Hardening, Risk, and Incident Analytics
Advanced attack visibility with guided investigation
Integrated Prevention, EDR and Risk Analytics
SOC-Driven, Security-Focused Outcomes
Next-Gen AV for All Infrastructures
Next-Gen AV for Small Businesses
Protection for Virtual Servers and Desktops
Cloud-based Email Security
Purpose-built Container and Linux security
Advanced MSP Security Suite
Optimized protection for AWS

Log in to your Bitdefender account and manage security for what matters.
January 07, 2022
For years, “The Spine Collector” has been haunting publishers around the world, attempting to steal manuscripts by famous authors.
As Vulture describes, for years somebody has been attempting to get their hands on upcoming books by the likes of  Margaret Atwood, Stieg Larsson, Sally Rooney, and Ethan Hawke by creating fake domain names that appeared – to the unwary – to be those of companies in the publishing industry.
More than 160 fraudulent domains are said to have been registered in an attempt to impersonate real entities and individuals from the world of publishing.   The domain names were confusingly similar to genuine domains, often using simple tricks such as replacing a lowercase “m” with the lowercase letters “rn”.
For instance, a domain like “penguinrandornhouse.com” could be easily mistaken for “penguinrandomhouse.com”.
By sending convincing emails that posed as industry colleagues, the fraudster known as “The Spine Collector” was able to trick publishers and others into handing over manuscripts of books.
We are used to bogus domains being used in phishing and other online attacks, but it has almost always been with the motive of stealing sensitive data or raiding financial accounts.  To use such – admittedly simple tricks – to steal unpublished books really is out of the ordinary.
What was also strange was that the books were not being pirated or distributed on the internet.  Ransoms were not demanded for the manuscripts’ safe return.  Indeed, publishers and the authorities were stumped as to what possible motive might be behind the attacks.
Could it be that the attacker was just a reader who had no patience to wait for a book to be properly published?
The truth, if anything, appears to have been even more bizarre.
Filippo Bernardini, a rights coordinator at Simon & Schuster in London, was arrested this week at JFK International Airport in New York.  The US Department of Justice claims that Bernardini had been “trying to steal other people’s literary ideas for himself” since at least August 2016, using his inside knowledge of the publishing industry to impersonate agents, editors, and others to fraudulently gain pre-publication access to manuscripts.
More details of the charges against Bernardini, and the methods he is alleged to have used, can be found in the US Department of Justice’s sealed indictment against him.
Simon & Schuster is reportedly shocked by the allegations against Bernardini, and has suspended him while investigations take place:
29-year-old Bernardini has been charged with wire fraud and aggravated identity theft, and could face as much as 22 years in prison if found guilty.
Graham Cluley is an award-winning security blogger, researcher and public speaker. He has been working in the computer security industry since the early 1990s.
December 21, 2021
December 17, 2021
November 24, 2021
November 04, 2021
October 26, 2021
October 25, 2021
January 07, 2022
January 07, 2022
January 06, 2022
© 2022 Bitdefender. All Rights Reserved

source

Article Categories:
Cybersecurity News

Comments are closed.