This is normally where DataBreaches might write, “Here’s today’s reminder of the Insider Threat,” but this time, we might add, “but not all insider threats are that sophisticated or hard to detect.” Connor Jones reports:
A Kansas City man who stands accused of having a disregard for basic opsec made his first court appearance on Friday over a series of alleged cybercrimes.
Nicholas Michael Kloster, 31, is alleged to have embarked on a confusing three-month Missouri crime spree that involved breaking and entering into a gym, causing $5,000 worth of damage to a non-profit, and abusing a credit card belonging to a company shortly after it hired him, according to the indictment [PDF].
The complaint claims Kloster was hired by what it refers to as “Company Victim 1” in March 2024 and that he quickly used the company credit card to make various purchases for himself. Only one of these was detailed in the indictment: a thumb drive that prosecutors say was advertised as one that could help users break into computers.
According to the document, Kloster was fired on April 30 – which would make for a short stint of employment – and allegedly attacked “Victim 2,” a health club chain, shortly before that termination.
Read more at The Register.
Related: Press release from the U.S. Attorney’s Office, Western District of Missouri