TechFlow news, on June 25, the Xuhui District People's Procuratorate of Shanghai accused three employees of Qihoo 360—Hong Mou, Yang Mou, and Zhang Mou (all handled in separate cases)—of exploiting a remote code execution vulnerability in Yapi to gain access to a target cryptocurrency website. They infiltrated the internal network, implanted trojans, took control of servers, stole victim Su Mou’s cryptocurrency wallet address and private key, transferred and sold the digital assets, illegally profiting over 2.5 million yuan. During this period, Zheng Mou forged Dash coin signatures and broadcast transactions, transferring 3,015.9 Dash coins.
Hong Mou and Zheng Mou have separately refunded 962,790 yuan and 70,000 yuan. The court ruled their actions constituted theft, sentencing Hong Mou to three years’ imprisonment with a four-year reprieve, and a fine of 50,000 yuan; Zheng Mou received a three-year sentence with a three-year reprieve and a fine of 50,000 yuan. Hong Mou was formerly deputy director of Qihoo 360’s Advanced Attack Research Institute, while Zheng Mou was head of the offensive weapons team at 360’s Advanced Security Lab.




