RT @jerallaire: Announcing that @endaomentdotorg CEO Robert Heeger is joining us in Sept at Converge22 in San Francisco. Come hear how End… | Posted: 2 months ago
While this was a fairly mundane scheme (at least in the context of 2017 ICOs, that is), it involved misrepresentations including claims that a prominent rapper was involved in the venture (ostensibly an entertainment streaming platform). The central scam alleged that user adoption would “surpass Netflix” over time.
As it turns out, the defendant merely converted the #ICO proceeds into his personal accounts, purchased a $1.5M USD house, a Ferrari for nearly $200k, and other lavish expenditures. As if this behavior wasn’t toxic enough, the defendant then went on to raise an additional $200k USD via a second ICO scam (ostensibly a cryptocurrency trading exchange), where he also pocketed the proceeds related to that venture.
The U.S. Department of Justice recently extradited the alleged operator of illegal cryptocurrency exchange #BTCe. This extradition is the culmination of over 5 years of litigation, and the 2017 indictment states that the BTC-e exchange ostensibly laundered over $4 billion (USD) in criminal proceeds.
Like other exchanges that have been sanctioned and/or shut down in recent years, BTC-e enabled users to anonymously trade bitcoin, allowing them to cash out proceeds from various #ransomware, #identitytheft, #drugtrafficking, and #taxrefund schemes. Defendant Alexander Vinnik, a Russian national, made his first appearance in federal court last week in San Francisco.
In addition to facing criminal charges, Vinnik also faces Dept of the Treasury/Financial Crimes Enforcement Network civil money penalties for: failing to have an #AML process or program; failing to register as a money services business with the U.S. Department of the Treasury, and failing to have a system for appropriate #KYC verification. The 2017 #FinCEN civil money penalty assessment was for $88.6M USD for BTC-e and $12M USD for Vinnik personally.
If you believe that you are a victim of the Baller Ape Club, EmpiresX, TBIS, and Circle Society schemes, please visit the DOJ website for details on how to submit your “Victim Impact Statement” (and thereby register as a victim).
The U.S. Department of Justice seized assets worth $500k USD from North Korean hackers targeting U.S.-based #healthcare organizations. The seized North Korean assets were either monies directly extorted from companies or monies used in laundering #ransomware payments.
In addition to the general #karma of this action, there was an object lesson about public-private sector collaborations as well. The prompt reporting by one healthcare victim allowed the Federal Bureau of Investigation (FBI) to identify a new strand of North Korean ransomware.
Of course, $500k is a pittance compared against the hundreds of millions of dollars stolen by North Korean cyber actors in recent years. Just the same, it’s important to trumpet the “wins” wherever we can find them.
Earlier this week, the United States Attorneys’ Offices won a conviction against the fraudster behind the crypto scheme My Big Coin – the regrettably named defendant for a cryptocurrency shill: Randall Crater. As a refresher, this was a $6M USD scheme defrauding investors by marketing and selling non-existent virtual currency.
As with several prominent mentions in the press this week, including actions from both U.S. Securities and Exchange Commission and U.S. Department of Justice, the “fraud is fraud” theme was the central theory of this case. For those of us in the digital assets industry for some time now, this is just the latest example of things equalizing in this space (i.e., the grown-ups are now on scene).
The U.S. Department of Justice announced yesterday that it has shut down (i.e., seized and taken control of the domains governing) several websites serving as both #DDoS attacks and as indexed search engines for breached personal information.
In the Federal Bureau of Investigation (FBI) announcement, the WeLeakInfo[.]to website was specifically referenced. For those who are unaware, this site contained roughly 7 billion indexed records of personal information illegally obtained from over 10,000 #databreaches. This is a 𝐁𝐈𝐆 𝐃𝐄𝐀𝐋.
I know that there are many events unfolding in recent weeks with far more gravitas than the link below might indicate. That said, I share today’s update because it’s a testament to the depths that the second-handers of the world will sink to meddle in something designed to be life-affirming — and the importance of resisting such meddling.
For those who don’t know, #EuroVision is an international songwriting competition organized annually by the European Broadcasting Union, featuring participants primarily from European countries. Italian police foiled a series of cyberattacks by a pro-Russian hacking group called “Killnet”. The Killnet attacks were designed to skew the results of this year’s competition, but both the #DDoS and voting-manipulation attacks were unsuccessful.
In case you haven’t heard, the #EuroVision2022 winner was Ukraine.
While the use of the verb “forfeit” in the headline of this story may seem confusing, it’s a GREAT turn of events. Simply put, U.S. Department of Justice, Criminal Division prosecutors in the Southern District of Florida have secured one of the largest #cryptocurrency #forfeiture actions ever filed in this country.
This story really resonates with me, as it represents a rather elegant intersection of #cyber and #crypto. The forfeiture action netted about $34M in cryptocurrency, all tied to the illegal #darkweb activity of a South Florida resident — specifically, the sale of online account credentials.
Of additional interest is the method by which this case was brought. In yet another example of inter-agency collaboration among federal, state, and local #lawenforcement, the investigators “followed the money” through a tortuous path, owing to the target’s use of cryptocurrency “tumblers”, “chain hopping”, and other (failed) #moneylaundering techniques.
A mere 8 months after his (alleged) involvement in the Kaseya #ransomware attacks, a Ukrainian national has been extradited to the United States and been formally indicted in a Dallas courtroom. This is the way…
I was thrilled to join my colleague, Lisa Frist, on a recent podcast discussing #cyberforensics and #lessonslearned from #cyberinvestigations. It’s (mercifully) brief, so please give it a listen.
Forensic Update 