Feeds

5 men named in racket that netted $4m in stolen card data

All aboard the Western Express Cybercrime Group

Internet Security Threat Report 2014

Prosecutors in Manhattan have named five additional men from Eastern Europe in an alleged scheme that pilfered $4m using more than 95,000 stolen credit cards.

Using handles such as "the Viver," "Inexwor," and "DoZ," the men were part of an international conspiracy that reached half-way around the world to snatch the payment card credentials of people located in New York, according to prosecutors in Manhattan District Attorney's office. They branded their highly profitable enterprise the Western Express Cybercrime Group.

The charges were originally filed in November 2007 in a 173-count indictment that charged 17 individuals and one corporation. It claimed that from 2001 to 2007, the defendants made millions of dollars trafficking stolen card numbers through a complex syndicate that included cybercrime services providers and money mules to sell stolen merchandise over eBay.

They employed anonymous digital currencies such as Egold and Webmoney to cover their tracks and placed ads on underground carding forums, according to prosecutors.

Defendants Viatcheslav Vasilyev, 33, and Vladimir Kramarenko, 31, were arrested simultaneously at their residences in Prague, Czech Republic in July 2008, and extradited to the US last week, district-attorney officials said Monday. The men allegedly bought stolen card numbers for the purposes of committing larcenies and identity theft. Part of their scheme involved a website named Elgouna Ltd., which recruited individuals to sell stolen merchandise online, according to the district attorney's office.

They are scheduled to be arraigned Tuesday in New York state court.

Egor Shevelev, 23, of Ukraine, was arrested in May 2008 while vacationing in Greece. He possessed more than 75,000 stolen account numbers and laundered over $600,000 in illegal proceeds, prosecutors said. He has not yet been extradited to the US.

The two remaining defendants have not been apprehended. They are Dzimitry Burak, aka Leon Kurochkin, a 26-year-old living in Ukraine, and Oleg Kovelin, aka Oleg Covelin, a 28-year-old from Moldova.

The case stems from a four-year investigation carried out jointly by the Manhattan District Attorney's Identity Theft Unit an the US Secret Service.

An attorney for Vasilyev told The New York Times that her client owned a legitimate web design business in Prague and planned to plead not guilty. An attorney for Kramarenko said he planned to vigorously contest the charges.

A spokeswoman said the Manhattan District Attorney's office doesn't provide electronic copies of indictments, but offered to mail a hard copy. A press release is available here. ®

Internet Security Threat Report 2014

More from The Register

next story
George Clooney, WikiLeaks' lawyer wife hand out burner phones to wedding guests
Day 4: 'News'-papers STILL rammed with Clooney nuptials
Shellshock: 'Larger scale attack' on its way, warn securo-bods
Not just web servers under threat - though TENS of THOUSANDS have been hit
Apple's new iPhone 6 vulnerable to last year's TouchID fingerprint hack
But unsophisticated thieves need not attempt this trick
PEAK IPV4? Global IPv6 traffic is growing, DDoS dying, says Akamai
First time the cache network has seen drop in use of 32-bit-wide IP addresses
Oracle SHELLSHOCKER - data titan lists unpatchables
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln
Who.is does the Harlem Shake
Blame it on LOLing XSS terroristas
Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'
Want to register that domain? We're way ahead of you.
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.