US ramps up enforcement actions against global crypto scams

Published at: Sept. 17, 2020

The United States has taken actions against international hackers responsible for the theft of millions of dollars in cryptocurrency.

On September 16, the U.S. Department of Justice, U.S. Department of Homeland Security, and the U.S. The Department of the Treasury’s Office of Foreign Assets Control announced it has imposed sanctions on two Russian nationals who used a sophistication phishing campaign to steal at least $16.8 million from the customers of three virtual currency exchanges in 2017 and 2018 — including two based in the United States.

The pair, Danil Potekhin and Dmitrii Karasavidi, created multiple websites impersonating legitimate crypto exchanges to steal the login information for unsuspecting victims, before using accounts verified with stolen identities to move the crypto assets through various intermediaries and execute pump and dump schemes targeting altcoins with low market capitalization.

“The individuals who administered this scheme defrauded American citizens, businesses, and others by deceiving them and stealing virtual currency from their accounts,” said secretary of the treasury, Steven Mnuchin.

“The Treasury Department will continue to use our authorities to target cyber criminals and remains committed to the safe and secure use of emerging technologies in the financial sector.”

On the same day, the U.S. Department of Justice announced that two hackers had been arrested in Malaysia in connection with computer hacking campaigns that targeted more than 100 companies, universities, governments, and non-profit organizations internationally.

The pair are each facing charges carrying up to 77 years in prison. Five Chinese nationals are still at large, including one individual who has claimed ties to China’s Ministry of State Security.

The group penetrated computing infrastructure to steal source code and other proprietary business information, customer account data, and to launch ransomware and cryptojacking schemes. David Bowdich, deputy director of the FBI, stated:

“Today’s announcement demonstrates the ramifications faced by the hackers in China but it is also a reminder to those who continue to deploy malicious cyber tactics that we will utilize every tool we have to administer justice.”

The indictment targeting the Malaysians was unsealed last month, while indictments for the Chinese hackers were unsealed in August 2019 and August 2020.

Tags
Regulation
United States
China
Hackers
Russia
Ransomware
Fraud
Malaysia
Related Posts
Enforcement goes on with Bitzlato action — Law Decoded, Jan. 16-23.
The good news of the last week is that Bitcoin (BTC) continued to review, making around 10% up from Jan.16 to Jan. 23. But it has yet to change a worrying trend of crypto companies making headlines due to their troubles with the law. The United States Department of Justice launched a “major international cryptocurrency enforcement action” against China-based crypto firm Bitzlato and arrested its founder, Anatoly Legkodymov. The enforcers consider Bitzlato to be a “primary money laundering concern” connected to Russian illicit finance. While the exchange attracted little attention until the DOJ action, it had received $206 million from …
Regulation / Jan. 23, 2023
Biden hints at possible cybersecurity arrangement with Russia over ransomware attacks
United States President Joe Biden implied he made some progress in addressing ransomware attacks on critical infrastructure after speaking with Russian President Vladimir Putin. Following a Wednesday summit in Geneva, Biden said he had spoken with Putin on the issue of cybersecurity, the U.S. president making it clear his opinion was certain areas of critical infrastructure were off limits for attacks — whether the targets were in Russia or the United States. Biden said the meeting had a positive tone, but he had told Putin “the United States will respond to actions that impair our vital interests or those of …
Regulation / June 16, 2021
US Treasury blacklisted a non-existent ETH address in connection with alleged Russian election interference
Earlier today, the U.S. Department of the Treasury updated its Specially Designated Nationals List, adding several individuals and a number of cryptocurrency addresses. One of the individuals added was Artem Mikhaylovich Lifshits — a Russian national, accused of interfering in the U.S. elections. In addition to disclosing his personal information, the site lists a number of cryptocurrency addresses that he allegedly controls. One of the Ethereum addresses, found at 0xa7e5d5a720f06526557c513402f2e6b5fa20b00, does not seem to exist, however. Source: U.S. Department of the Treasury. There was likely a mixup somewhere in the chain of command and the Treasury meant to blacklist 0xA7e5d5A720f06526557c513402f2e6B5fA20b008 …
Regulation / Sept. 10, 2020
US charges operators of Russian troll farm with fraud over crypto accounts
The U.S. filed criminal charges against Russian national Artem Lifshits for his management of an affiliate of the infamous Internet Research Agency, which U.S. authorities accuse of interfering in the 2016 election. The new complaint alleges that Lifshits has managed the translator department of Project Lakhta since 2017, in which capacity he illegally obtained U.S. identification documents in order to use "the means of identification of United States persons to open bank accounts, PayPal accounts, and cryptocurrency accounts." The charge is conspiracy to commit wire fraud. The U.S. Department of Justice says these accounts were a means for Lifshits and …
Regulation / Sept. 10, 2020
Celebrities May Have Their Dirty Secrets Exposed if Crypto Ransom Is Unpaid
The REvil ransomware gang says that they will auction over 1TB of data stolen from New York-based entertainment law firm, Grubman Shire Meiselas & Sacks. This data allegedly contains the “dirty” secrets of a number of celebrities. REvil claims that the contents involve sex scandals, drugs, and treachery. Nicki Minaj, LeBron James, and Mariah Carey among the alleged victims In a blog post, the ransomware group says they will begin the auction on July 1, noting that the first round will contain information from Nicki Minaj, Mariah Carey, and LeBron James. The price for each dataset is $600,000. Two days …
Technology / June 24, 2020