Infraud Cybercrime Site: Dozens Arrested

Thirty-six people have been charged for their alleged involvement in running a cybercrime service responsible for more than $530m (£381m) of losses. The Infraud Organisation is said to have dealt in stolen credit cards and passwords and engaged in bank fraud and ID theft.
 
As of March 2017, its dark-web-based service's discussion forum is said to have had 10,901 registered members. 
The US Department of Justice said 13 of the suspects were now in custody. They include UK-based Anthony Nnamdi Okeakpu, who is alleged to have joined in December 2010 and have used the nickname "moneymafia".
 
Other defendants include Svyatoslav Bondarenko, a Ukranian accused of having created Infraud in October 2010.
Five apprehended defendants were based in the US while others came from France, Canada, Pakistan, Russia Egypt, Italy and Macedonia among other countries.
 
"As alleged in the indictment, Infraud operated like a business to facilitate cyber-fraud on a global scale," said acting assistant attorney general John Cronan of the Justice Department's Criminal Division.
"Its members allegedly caused more than $530m in actual losses to consumers, businesses, and financial institutions alike - and it is alleged that the losses they intended to cause amounted to more than $2.2bn."
 
Affected businesses were said to have included HSBC bank and PayPal.
 
The US authorities said they were now attempting to extradite eight of the suspects being held overseas.
 
Automated Sales
The indictment says that Infraud's administrators had aimed to run the "premier online destination for the purchase and sale of stolen property" and had used the slogan "In Fraud We Trust" to promote it.
Its activities are alleged to have included:
  • the sale and purchase of stolen dates of birth, addresses, passwords, social security numbers, payment card details and other personally identifying information
  • the ability to advertise other sites that featured automated stores for stolen property
  • the sharing and sale of malware
  • the provision of forums and chat rooms to discuss illegal activities
At one point in 2011, one of the accused is said to have indicated he had 795,000 UK logins to HSBC bank available for sale.
Two years later, another is alleged to have advertised 1,300 compromised PayPal account IDs. Other specific accusations include adverts for Visa, Mastercard and American Express credit card numbers. One member is said to have offered to fraudulently book flights, rental cars and seats at US concerts and sporting events at a fraction of their actual price.
 
Members are said to have given feedback ratings to each other to help maintain the quality of contraband sold via the service. Proceeds were said to have been laundered via digital currencies including Bitcoin and the defunct service Liberty Reserve.
 
In an effort to evade arrest, members are alleged to have avoided sharing their real identities with each other, and instead used nicknames including "Mae Tony", "Poony" and "Hulk".
 
"The criminals involved in such schemes may think they can escape detection by hiding behind their computer screens here and overseas," said Derek Benner, of Homeland Security Investigations.
"But as this case shows, cyber-space is not a refuge from justice."
 
BBC
 
You Might Also Read: 
 
Cybercrime: £130bn Stolen From Consumers In 2017:
 
British Banks Are Hiding Cyber Attacks:
 
 
 
 
« Business Cybersecurity Strategy
Cybersecurity Salaries 7% Up In 2018 »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

Akheros

Akheros

Akheros develops cybersecurity learning algorithms which anticipate, detect and prevent offensive and incongruous behaviors of M2M interactions.

Think Cyber Security (ThinkCyber)

Think Cyber Security (ThinkCyber)

ThinkCyber is a Tel Aviv-based Israeli company with a team of cybersecurity professionals who are experts in both information and operations technology.

CyberGhost

CyberGhost

CyberGhost is a Virtual Private Network services provider offering secure encrypted access to the internet.

Information Systems Security Partners (ISSP)

Information Systems Security Partners (ISSP)

ISSP is a specialized system integrator focused on the information security needs of its corporate clients and providing best in class products and services for securing organizational information.

Very Good Security (VGS)

Very Good Security (VGS)

VGS is the modern approach to data security. Our SaaS solution gives you all the benefits of interacting with sensitive and regulated data without the liability of securing it.

Pentest People

Pentest People

Pentest People are a UK-based security consultancy focussing on bringing the benefits of Pentesting as a Service (PTaaS) to all its clients.

Infosec Train

Infosec Train

Infosec Train provide professional training, certifications & professional services related to all spheres of Information Technology and Cyber Security.

Crypto Quantique

Crypto Quantique

Crypto Quantique's ground-breaking technology radically simplifies the process of generating a hardware root of trust in an IoT device.

EuraTechnologies

EuraTechnologies

EuraTechnologies, the French incubator and accelerator, is a centre of excellence and innovation for startups and entrepreneurs with a focus on Digital, Data, Cybersecurity and IoT.

BicDroid

BicDroid

BicDroid is a world leader in data and cyber security with innovative solutions that protect your data anywhere, anytime, against everything.

Littlefish

Littlefish

Littlefish provide world-class, award-winning Managed IT and Cyber Security Services, delivered from our 24/7 UK service centres.

European Cyber Competence Network

European Cyber Competence Network

The purpose of the European Cyber Competence Network is to retain and develop the cybersecurity technological and industrial capacities of the EU necessary to secure its Digital Single Market.

Cybergroot

Cybergroot

Cybergroot provides Cybersecurity Assessment services and professional Information Security trainings.

Vantyr

Vantyr

Vantyr's core mission is to safeguard the business-led adoption of SaaS applications by automating the lifecycle management and security of non-human identities.

Cyber Grant

Cyber Grant

Cyber Grant excel in designing cybersecurity solutions for data protection. Our approach and vision, centered on ease-of-use, establish us as a benchmark in the industry for safeguarding information.

Creative Network Innovations (CNI)

Creative Network Innovations (CNI)

Creative Network Innovations is a leader in providing advanced IT and cybersecurity solutions.