Last week, a high-ranking tech executive was arrested in Michigan on data theft suspicion at the behest of Los Angeles CA county district attorney. Konnech Corporation CEO Eugene Yu was arrested on suspicion of storing election workers’ data on servers in China. Konnech develops PollChief, a payroll, communication, training, and logistics management system for election workers that the Los Angeles county leverages under contract during elections. “Under its $2.9 million, five-year contract with the county, Konnech was supposed to securely maintain the data and that only United States citizens and permanent residents have access to it,” stated the Los Angeles County District Attorney.
However, an investigation revealed that the company stored the information on servers located in China. A similar controversy erupted in the early days of the COVID-19 pandemic when the video-conferencing service Zoom was found to be routing streaming data through China. The difference is that Zoom wasn’t obligated to steer clear of China. Consequently, Eugene Yu, the CEO of Konnech, was apprehended under suspicion of theft of the personal identifying information of poll workers. Konnech was the subject of a recently floated theory about the 2020 presidential election being influenced by China through the data of poll workers.[1]
Texas nonprofit True the Vote led the theory that Konnech and Yu, who immigrated from China in the mid-1980s, were acting as Chinese government agents in the US. Side note; True the Vote, its founder and a leading member were all sued in September 2022 for racism, xenophobia, and defamation.
In the lawsuit, Konnech mentions Yu was subjected to death threats and denied claims that it has data (social security numbers, phone numbers, email addresses, and banking information) of 1.8 million U.S. poll workers. “Konnech does not, and has never, stored any actual customer or poll worker data on any server in China,” the company said.
Konnech told The New York Times that it only had data of 240,000 poll workers and that its Chinese subsidiary used dummy data for testing. But it appears that the Los Angeles County District Attorney’s Office has evidence against Konnech and Yu, that is probable cause to warrant an arrest for the executive. It is reported the US Federal Bureau of Investigation (FBI) is also involved in the investigation.
However, an LA District Attorney clarified, “This investigation is concerned solely with the personal identifying information of election workers. In this case, the alleged conduct had no impact on the tabulation of votes and did not alter election results.”
The Los Angeles County District Attorney’s Office did not share details of their investigation on Konnech and Yu. According to a Court document filed in Michigan, Yu is also charged with “the extraditable crime of Embezzlement of Public Funds” and that a witness has “probable cause to believe and suspect that the defendant is a fugitive from justice.” He added, “Data breaches are an ongoing threat to our digital way of life. When we entrust a company to hold our confidential data, they must be willing and able to protect our personal identifying information from theft. Otherwise, we are all victims.”
Commenting on Yu’s arrest, True the Vote said, “True the Vote was sued last month by Konnech to try to silence our organization, including obtaining an ex-parte temporary restraining order (TRO), conducted in secret so that True the Vote had no opportunity to contest it. This TRO limited True the Vote’s ability to speak on the litigation. True the Vote is honored to have played a small role in what must have been a wide-ranging and complex investigation.” The nonprofit added that many reporters, who remain unnamed, “unblinkingly accepted their now discredited claims as fact, and simply repeated them.”
Besides arresting Yu, the LA District Attorney’s Office also seized hard drives and other digital evidence associated with PollChief. The legal allegations did not specify the type of data allegedly stolen by Konnech and Yu. Konnech stated, “We are continuing to ascertain the details of what we believe to be Mr. Yu’s wrongful detention by LA County authorities. Any LA County poll worker data that Konnech may have possessed was provided to it by LA County, and therefore could not have been ‘stolen’ as suggested.”
Red Sky Alliance has long followed Chinese cyber interference. Any server in and connected inside China, is monitored by the Chinese Communist Party (CCP). Konnech has stated that the connection to China “was a mistake.” This author does not believe erroneous actions like what Konnech conducted, was no “mistake.” Therefore this investigation and arrest, with connections to the US electoral process, means a lot.
Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization. For questions, comments or assistance, please contact the office directly at 1-844-492-7225, or feedback@wapacklabs.com
Weekly Cyber Intelligence Briefings:
- Reporting: https://www. redskyalliance. org/
- Website: https://www. wapacklabs. com/
- LinkedIn: https://www. linkedin. com/company/64265941
Weekly Cyber Intelligence Briefings:
REDSHORTS - Weekly Cyber Intelligence Briefings
https://attendee.gotowebinar.com/register/5504229295967742989
[1] https://www.spiceworks.com/it-security/cloud-security/news/konnech-ceo-arrested-for-data-theft/
Comments