Ukrainian sent to prison for making over $80,000 with stolen passwords
A 28-year-old Ukrainian national used a botnet to decrypt credentials and pass them on to other criminals who could later use the passwords for ransomware and tax fraud.
Glib Oleksandr Ivanov-Tolpintsev was sentenced to four years in federal prison for decrypting the credentials of thousands of computers worldwide and selling them on the dark web. He was also ordered to pay back illegally made profits, over $82,000.
In 2020, Polish authorities took Ivanov-Tolpintsev into custody and extradited him to the US. In February 2022, he pleaded guilty to selling usernames, passwords, and personally identifiable information, including dates of birth and Social Security Numbers of the US residents, on the dark web.
Ivanov-Tolpintsev controlled a botnet to conduct brute-force attacks designed to simultaneously decrypt numerous computer login credentials. The botnet was capable of decrypting the login credentials of at least 2,000 computers every week.
Ivanov-Tolpintsev made at least $82,648 by selling login credentials to servers located across the world. Criminals then used the purchased credentials to facilitate cybercriminal activity, including ransomware attacks and tax fraud.
The US Attorney’s Office said that the Marketplace offered more than 700,000 compromised servers for sale, including at least 150,000 in the United States and at least 8,000 in Florida.
“Marketplace victims spanned the globe and industries, including local, state, and federal government infrastructure, hospitals, 911, and emergency services, call centers, major metropolitan transit authorities, accounting and law firms, pension funds, and universities,” it said.
More from Cybernews:
Subscribe to our newsletter