Infraud Cybercrime Site: Dozens Arrested

Thirty-six people have been charged for their alleged involvement in running a cybercrime service responsible for more than $530m (£381m) of losses. The Infraud Organisation is said to have dealt in stolen credit cards and passwords and engaged in bank fraud and ID theft.
 
As of March 2017, its dark-web-based service's discussion forum is said to have had 10,901 registered members. 
The US Department of Justice said 13 of the suspects were now in custody. They include UK-based Anthony Nnamdi Okeakpu, who is alleged to have joined in December 2010 and have used the nickname "moneymafia".
 
Other defendants include Svyatoslav Bondarenko, a Ukranian accused of having created Infraud in October 2010.
Five apprehended defendants were based in the US while others came from France, Canada, Pakistan, Russia Egypt, Italy and Macedonia among other countries.
 
"As alleged in the indictment, Infraud operated like a business to facilitate cyber-fraud on a global scale," said acting assistant attorney general John Cronan of the Justice Department's Criminal Division.
"Its members allegedly caused more than $530m in actual losses to consumers, businesses, and financial institutions alike - and it is alleged that the losses they intended to cause amounted to more than $2.2bn."
 
Affected businesses were said to have included HSBC bank and PayPal.
 
The US authorities said they were now attempting to extradite eight of the suspects being held overseas.
 
Automated Sales
The indictment says that Infraud's administrators had aimed to run the "premier online destination for the purchase and sale of stolen property" and had used the slogan "In Fraud We Trust" to promote it.
Its activities are alleged to have included:
  • the sale and purchase of stolen dates of birth, addresses, passwords, social security numbers, payment card details and other personally identifying information
  • the ability to advertise other sites that featured automated stores for stolen property
  • the sharing and sale of malware
  • the provision of forums and chat rooms to discuss illegal activities
At one point in 2011, one of the accused is said to have indicated he had 795,000 UK logins to HSBC bank available for sale.
Two years later, another is alleged to have advertised 1,300 compromised PayPal account IDs. Other specific accusations include adverts for Visa, Mastercard and American Express credit card numbers. One member is said to have offered to fraudulently book flights, rental cars and seats at US concerts and sporting events at a fraction of their actual price.
 
Members are said to have given feedback ratings to each other to help maintain the quality of contraband sold via the service. Proceeds were said to have been laundered via digital currencies including Bitcoin and the defunct service Liberty Reserve.
 
In an effort to evade arrest, members are alleged to have avoided sharing their real identities with each other, and instead used nicknames including "Mae Tony", "Poony" and "Hulk".
 
"The criminals involved in such schemes may think they can escape detection by hiding behind their computer screens here and overseas," said Derek Benner, of Homeland Security Investigations.
"But as this case shows, cyber-space is not a refuge from justice."
 
BBC
 
You Might Also Read: 
 
Cybercrime: £130bn Stolen From Consumers In 2017:
 
British Banks Are Hiding Cyber Attacks:
 
 
 
 
« Business Cybersecurity Strategy
Cybersecurity Salaries 7% Up In 2018 »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Exodus Intelligence

Exodus Intelligence

Exodus Intelligence are an industry leading provider of exclusive zero-day vulnerability intelligence, exploits, defensive guidance, and vulnerability research trends.

Pyramid Computer

Pyramid Computer

Pyramid Computer provides custom enterprise solutions for Industrial PC, Imaging, Network, Security, POS, Indoor Positioning and Automation.

CERT.BY

CERT.BY

The National Computer Emergency Response Team of the Republic of Belarus.

SCIPP International

SCIPP International

SCIPP’s courses are based on internationally recognized best business practices for security awareness, for both technical and non-technical staff and to comply with regulatory mandates.

SlashNext

SlashNext

The SlashNext Internet Access Protection System (IAPS) provides Zero-Day protection against all internet access threats including Social Engineering & Phishing, Malware, Exploits and Callback Attacks.

Belkasoft

Belkasoft

Belkasoft is a software vendor providing public agencies, corporate security teams, and private investigators with digital forensic solutions.

Cyber Resilience

Cyber Resilience

Cyber Resilience offer an intensive program designed to help you create strategies to quickly become cyber resilient and to manage cyber risks in a measurable and predictable way.

Macomb-OU Incubator

Macomb-OU Incubator

Macomb-Oakland University Incubator supports startup and emerging companies in the niche industries of defense, homeland security, advanced manufacturing and technology.

TAG Cyber

TAG Cyber

TAG Cyber's mission is to provide world-class cyber security research, advisory, and consulting services to enterprise security teams around the world.

Antares NetlogiX

Antares NetlogiX

Antares Netlogix are a leading Austrian service provider for IT security, critical infrastructures and managed security services.

Asimily

Asimily

Asimily’s IoMT risk remediation platform holistically secures the mission-critical healthcare devices that deliver safe and reliable care.

Accops Systems

Accops Systems

Accops enables secure and instant remote access to business applications from any device and network, ensuring compliant enterprise mobility.

BIRD Cyber

BIRD Cyber

BIRD Cyber is a program to promote collaboration on cybersecurity and emerging technologies aimed at enhancing the cyber resilience of critical infrastructure.

Access Venture Partners

Access Venture Partners

Access Venture Partners are an early stage VC firm investing in bold founders and helping every step of the way. Areas we give special focus to include cybersecurity.

Varutra Consulting

Varutra Consulting

Varutra Consulting is an Cyber Security Consulting, Solutions and Training services firm, providing specialized security services for software, mobile and network.

Eficens Systems

Eficens Systems

Eficens Systems is a global IT services and consulting company. We specialize in empowering businesses to harness the potential of Information Technology as a strategic asset.