🟡 Medium | Source: The Hacker News
The US Department of Justice has seized a cloud computing account used by subsidiaries of HuiOne Group, a Cambodian conglomerate, to launder proceeds from cyber scams. Simultaneously, the US Treasury imposed fresh sanctions on nine individuals and 26 entities linked to the Prince Group. HuiOne has been previously identified as a key financial infrastructure provider for Southeast Asian cyber fraud operations, including pig butchering scams.
Security Architect’s Take: Review your organisation’s cloud account onboarding and KYC processes to ensure sanctions screening is applied to all account holders and associated entities; consider integrating OFAC and HM Treasury sanctions list checks into your cloud provisioning pipelines to avoid inadvertently hosting or transacting with sanctioned parties.
Original advisory: DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering