Cyber Threat Actor: ChinoOkwu
| Actor Type | Location | Known Incidents |
Criminal
|
Nigeria
|
1 incident |
|---|
Profile
The threat actor known by thealias ChinoOkwu has been referenced in open‑source reporting in connection with a data breach that occurred in mid‑2014. Public sources associate this alias with an individual or group operating from Nigeria. No further biographical or organizational details about ChinoOkwu have been disclosed in the available material.
On July 15, 2014, the VacationRentPayments service operated by YapStone experienced unauthorized access that persisted for an extended period before detection. The compromised system exposed personal information submitted through account applications, including email addresses, postal addresses, partial Social Security numbers, driver’s license numbers, dates of birth, and bank account details. Notably, the breach did not affect traveler payment information, which remained secure throughout the incident. The intrusion was eventually identified and blocked, prompting YapStone to engage third‑party forensic investigators.
Following the discovery, YapStone strengthened its password policies and enhanced monitoring capabilities across its environment. Affected individuals were offered two years of credit monitoring services as a precautionary measure, despite the absence of evidence indicating misuse of the exposed data. Regulatory authorities in multiple U.S. states were notified of the breach, although the exact number of impacted accounts was not publicly disclosed. These actions represent the only publicly documented activity linked to the ChinoOkwu alias to date.
