A Russian citizen has been charged by the US Department of Justice and added to the FBI’s Cyber Most Wanted list for allegedly establishing and operating a cybercrime marketplace.
Igor Dekhtyarchuk, a resident of Russia, was charged in the Eastern District of Texas with running the cybercrime market that sold credit cards, access to compromised devices or accounts, and personal information.
The indictment alleges that Dekhtyarchuk launched the marketplace in May 2017 and started promoting it on Russian hacking forums from April 2018.
“Dekhtyarchuk began advertising the sale of compromised account data on Russian-language hacker forums in April 2018 and opened Marketplace A in May 2018. Dekhtyarchuk immediately began advertising Marketplace A and the products it sold in May 2018,” the indictment reads. the DOJ.
“As of May 2021, Dekhtyarchuk has publicly advertised through Marktplaats A that he has sold more than 48,000 compromised email accounts, 25,000 compromised Company B accounts and 19,000 compromised Company A accounts.”
When buyers bought device access from the marketplace, they were reportedly contacted via Telegram by Dekhtyarchuk or one of his associates and sent either login details or a login cookie that gives access to the purchased device or account.
Dekhtyarchuk has since been added to the FBI’s Cyber Most Wanted list on charges of wire fraud, access device fraud and aggravated identity theft.
Dekhtyarchuk on the FBI’s Most Wanted List
While the indictment did not reveal which cybercrime marketplace had been created by Dekhtyarchuk, it did mention that he was operating under the alias “Floraby.”
With the help of KELA’s cybersecurity intelligence agency DARKBEAST, BleepingComputer was able to locate an individual by the name of “Floraby” promoting the BAYACC marketplace and selling compromised credentials.
Although the site appears to be offline, archived snapshots show that BAYACC has sold accounts for several companies, including eBay, Amazon, SamsClub and PayPal, with prices advertised in Russian rubles.
BAYACC Stolen Credentials Marketplace
Advanced Intel CEO Vitali Kremez Also, BleepingComputer confirmed that the person behind ‘Floraby’ was a supplier of bruteforce accounts which were then sold on their BAYACC marketplace.
“The individual used compromised data from several e-commerce websites to brutally force store accounts of major retailers and offer them online to various carders and fraudsters,” Kremez told BleepingComputer.
“His store ‘BAYACC’ largely competed with the account shopping giants such as SlilPP for the criminal market share and provided daily updates of compromised accounts for free.”
While the BYOCC Telegram still appears to be active, the site is no longer accessible.
One of the ways law enforcement has addressed the growing ransomware epidemic is by targeting the infrastructure and access providers that attackers use to access corporate networks.
In June 2021, an international law enforcement operation shut down Slilpp, the largest online marketplace of stolen credentials.
Later that month, law enforcement seized the servers, data, and customer logs for DoubleVPN, a double encryption service commonly used by ransomware gangs and other threat actors.
This post FBI Adds Owner of Russian Cybercrime Market to Most Wanted List
was original published at “https://www.bleepingcomputer.com/news/security/fbi-adds-russian-cybercrime-market-owner-to-most-wanted-list/”