Certainly one of six laborious disks recovered from laptops belonging to hacker Srikrishna Ramesh alias Sriki, 26, who’s on the centre of an alleged Bitcoin-for-bribes controversy that has hit Karnataka politics in current weeks, has revealed knowledge of a hack carried out on the e-procurement cell of the state authorities the place Rs 11.5 crore was stolen by a hacker gang in 2019.
The evaluation of those laborious disks from laptops seized from the hacker and an affiliate Robin Khandelwal, following their arrest in Bengaluru in November 2020, was carried out by non-public cyber forensics agency Group Cyber ID Know-how Pvt Ltd earlier this yr on the occasion of the Bengaluru metropolis cybercrime police in a case of hacking of two poker gaming websites.
The main points of the evaluation are enclosed as a report in a chargesheet filed within the cyber case.
In accordance with the cyber forensics report, one laborious disk “marked 01” recovered from a Macbook belonging to Srikrishna accommodates “hacking knowledge” for the alleged hacking of the eproc.karnataka.gov web site of the e-governance cell of the Karnataka authorities and different websites.
The report has cited a textual content file, created in 2018, that confirms the hacking of the e-procurement web site.
In August 2019, officers on the e-procurement cell of the Karnataka authorities filed complaints with the cybercrime unit of the Legal Investigation Division of the state police saying unknown individuals had stolen Rs 11.5 crore of earnest cash deposits from the e-procurement cell and that officers had been capable of cease the theft of Rs 7.37 crore.
Srikrishna and his associates are accused within the e-procurement cell hacking case and a number of other different incidents of hacking Bitcoin exchanges and poker gaming websites.
Since his arrest in November 2020, initially in a case of shopping for medicine with Bitcoins, Srikrishna has claimed that he and his associates had been making an attempt to steal Rs 46 crore from the e-procurement cell – in three tranches — however managed to get solely Rs 11.5 crore earlier than officers bought wind of the crime.
Police mentioned the hacker and his associates arrange an elaborate system of routing the stolen a reimbursement by way of hawala channels — after it was initially moved from the e-procurement cell to an NGO’s account in Nagpur in Maharashtra and the account of a personal agency in Bulandshahr in Uttar Pradesh.
In a voluntary assertion to the police after his arrest final yr, Srikrishna admitted his involvement within the hack: “In Might/June 2019, I hacked into the e-procurement web site of the Govt of Karnataka the place I exploited a distant code execution vulnerability and bought entry to the bidder info and downloaded all of the information referring to the bids occurring at that second.”
The evaluation of the laborious disk from Srikrishna’s laptop computer has additionally revealed hacking knowledge for poker websites PokerSaint, pppoker, Poker Baazi, for a Bitcoin alternate known as Koinex and a number of other different websites together with meals provide service supplier Zomato.
The cyber forensic consultants might entry the laborious disk of solely two of six laptops seized from Srikrishna and his affiliate Robin Khandelwal. Three laptops couldn’t be analysed attributable to encryption codes that would not be bypassed whereas one was broken, says the forensics report.
By the way, the identical cyber forensics agency carried out an evaluation of information held in a cloud server by the hacker and located that Srikrishna had as many as 76.13 lakh public addresses/non-public keys for Bitcoins and as many as 26 e-wallets. Sources mentioned these might have been acquired by hacking or by way of knowledge buying and selling on the darkish net as a part of efforts by hacker teams to steal cryptocurrency.
One of many wallets within the cloud with 31 Bitcoins was initially proven by the hacker to the police as his personal by offering solely the general public deal with and never the non-public key that’s wanted to entry the Bitcoins within the pockets.
The ruling BJP in Karnataka has been questioned in current weeks by the opposition Congress over the alleged disappearance of over 5000 Bitcoins reported to have been within the possession of Srikrishna (as claimed by the hacker himself) earlier than his arrest in November 2020. The Congress has steered corruption involving a number of BJP leaders and their kin. The BJP has alleged that the hacker was related to the kin of many Congress leaders too.