Insider Trading: Ukrainian Hackers Accomplice Pleads Guilty

A US stockbroker pleaded guilty to conspiracy for his role in an insider-trading ring that reaped millions of dollars in illicit profits from Ukrainian hackers who pilfered corporate press releases before they were published.

Leonid Momotok, of Suwanee, Georgia, admitted he controlled a brokerage account used in a five-year scheme. At a hearing recently before US Magistrate Judge Ramon Reyes, he admitted he placed and profited from trades based on information he knew was stolen.

“I knew that this inside information was being passed to traders like myself and on the basis of this information, I executed trades on New York stock exchanges,” he said. “It was bad judgment and I am very sorry.”

Momotok, 48, was one of nine people charged in a case that federal prosecutors in Brooklyn and New Jersey described last year as the largest scheme of its kind ever prosecuted in both the scope of the alleged hacking and the number of traders involved.

Plea Deal

Momotok was indicted on conspiracy, securities fraud, money laundering and other charges. The most serious crimes of securities fraud and wire fraud carry terms of as long as 20 years in prison.

As part of a plea deal, Momotok pleaded guilty to one count of conspiracy to commit wire fraud and agreed not to challenge a prison sentence of not more than nine years when he is sentenced Dec. 9. He and his attorney, Linda Moreno, declined to comment as they left the courtroom.

The case highlights an unusual intersection of securities fraud and hacking. Prosecutors said the ring employed a criminal alliance of traders and hackers who infiltrated PR Newswire Association LLC, Marketwired Inc. and Business Wire, obtaining more than 150,000 unpublished news releases ahead of market-moving news. Traders made about $30 million in illicit gains.

The ring gained access to the three services by launching a series of orchestrated cyber-attacks using malware and obtaining the log-in credentials of newswire employees, according to the government. Hackers then circulated “shopping lists” of companies about to issue news releases, such as Panera Bread Co, Caterpillar Inc., Home Depot Inc. and Advanced Micro Devices Inc., the government said.

Leaked Releases

Members of the ring in the US and the Ukraine, including Momotok, then traded on the leaked news releases ahead of their publication, prosecutors said. Millions of dollars were laundered when they were transferred to Europe, Asia and elsewhere using shell companies, according to the government.

Momotok’s co-defendant, Vitaly Korchevsky, called the alleged “linchpin” by prosecutors, is accused of making $17 million. He pleaded not guilty to the charges and is awaiting trial. Another co-defendant, Alexander Garkusha, pleaded guilty in December and is cooperating with the US. He hasn’t yet been sentenced. A fourth man isn’t in custody.

Of the five charged in New Jersey, two have pleaded guilty and charges are pending against the other three, according to court records.

Information-Management

 

« Mobile Battery Tracks You Online
Cybersecurity Issues Are M&A Deal Breakers »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Lutech

Lutech

Lutech is an Italian ICT engineering and services company. Business solution areas include cyber security.

SecLytics

SecLytics

SecLytics is the leader in Predictive Threat Intelligence. Our SaaS-based Augur platform leverages behavioral profiling and machine learning to hunt down cyber criminals.

Shift Technology

Shift Technology

Shift Technology provides insurance companies with an innovative SaaS solution to improve and scale fraud detection.

Surevine

Surevine

Surevine builds secure, scalable collaboration solutions for the most security conscious organisations, enabling collaboration on their most sensitive information.

Department of Justice & Equality - Cybercrime Division

Department of Justice & Equality - Cybercrime Division

The Cybercrime division is responsible for developing policy in relation to the criminal activity and coordinating a range of different cyber initiatives at national and international level.

GlobalPlatform

GlobalPlatform

GlobalPlatform’s specifications are highly regarded as the international standard for enabling digital services and devices to be trusted and securely managed throughout their lifecycle.

Agio

Agio

Agio is a hybrid managed IT and cybersecurity provider servicing the financial services, health care and payments industries.

Militus

Militus

Militus provides the only information security service available that learns and analyzes your network over time using a custom-built network-based toolset.

SignalSEC

SignalSEC

SignalSEC provides vulnerability intelligence, malware analysis, penetration testing and associated training services.

South West Cyber Resilience Centre (SWCRC)

South West Cyber Resilience Centre (SWCRC)

The South West Cyber Resilience Centre (SWCRC) is led by serving police officers, as part of a not-for-profit partnership with business and academia.

Vantage Point Security

Vantage Point Security

Vantage Point are specialists in penetration testing and application security with a focus on the industries undergoing rapid digital transformation.

TatvaSoft

TatvaSoft

TatvaSoft is a custom software development company delivering business IT solutions and related services to customers across the globe.

Seemplicity

Seemplicity

Seemplicity revolutionizes the way security teams work by automating, optimizing and scaling all risk reduction workflows in one workspace.

Ghost Security

Ghost Security

Ghost is a venture backed, product-led startup building the new standard in application security for the modern enterprise.

Fortress SRM

Fortress SRM

Fortress SRM protects companies from the financial, operational, and emotional trauma of cybercrime by improving the security performance of its people, processes, and technology.

Quantum Dice

Quantum Dice

Quantum Dice is an award-winning venture-backed spinout from Oxford University’s world-renowned quantum optics laboratory.