darkcode.com seized

A listing of any stories pertaining to cybercriminal investigations which result in firm legal action.

darkcode.com seized

Postby Red Dwarf » Tue Jul 14, 2015 11:33 pm

From http://arstechnica.com/security/2015/07 ... ime-forum/

Over 60 arrests across 18 countries

"Darkode, according to a post published in April 2013 by KrebsOnSecurity, ( http://krebsonsecurity.com/2013/04/fool-me-once/ ) has long acted as an online bazaar for criminals looking to buy and sell drive-by exploits, spam services, ransomware programs, botnet tools, and other illicit products and services. According to news organizations located in Brazil, the site has been under investigation since March by agents with the FBI Europol, Brazil's Federal Police, and law enforcement agencies in other countries. The operation has resulted in 62 arrests in 18 countries, including Germany, the UK, Romania, Bosnia, Serbia, India, Sweden, Denmark, and Colombia, according to the reports."

darkode.com and darkode.me show "Seized by the FBI" image and 18 law enforcement logos across Europol.

Code: Select all
Registrant Name: Maksim Roslyakov
Registrant Organization: N/A
Registrant Street: ul. Lenina, d.1, kv.2
Registrant City: Sankt-Peterburg
Registrant State/Province: Leningradskaya oblast
Registrant Postal Code: 197110
Registrant Country: RU
Registrant Phone: +7.9346346364
User avatar
Red Dwarf
You are kiillllling-a my bizinisss!
Posts: 10542
Joined: Tue Jun 27, 2006 2:01 am

Re: darkcode.com seized

Postby Red Dwarf » Wed Jul 15, 2015 12:05 am

From the press release in Brazil, where there were two arrests, of hackers in the cities of Goiânia / GO and Belo Horizonte / MG.

One suspect arrested in Goiânia, who worked on the hacker forum, had a network known as a "botnet " .. He "rented" access to these computers so that other hackers could commit their crimes.

"The suspect controlled a botnet, which he claimed to be the largest in Brazil with over 25,000 points. A network of infected computers can be used to send spam, make attacks on websites, banking fraud...

The largest amount of people investigated were arrested in Romania (16)
User avatar
Red Dwarf
You are kiillllling-a my bizinisss!
Posts: 10542
Joined: Tue Jun 27, 2006 2:01 am

Re: darkcode.com seized

Postby Red Dwarf » Wed Jul 15, 2015 6:38 pm

More from the FBI press release - https://www.fbi.gov/pittsburgh/press-releases/2015/major-computer-hacking-forum-dismantled

"Operation Shrouded Horizon"

And today, the Department of Justice and the FBI—with the assistance of our partners in 19 countries around the world—announced the results of Operation Shrouded Horizon, a multi-agency investigation into the Darkode forum. Among those results were charges, arrests, and searches involving 70 Darkode members and associates around the world; U.S. indictments against 12 individuals associated with the forum, including its administrator; the serving of several search warrants in the U.S.; and the Bureau’s seizure of Darkode’s domain and servers.

The following defendants face charges in the US:

Johan Anders Gudmunds, aka Mafi aka Crim aka Synthet!c, 27, of Sollebrunn, Sweden, as the administrator of Darkode, and creating and selling malware to create botnets.

Morgan C. Culbertson, aka Android, 20, of Pittsburgh, designing Dendroid which steals data from Android cellphones.

Eric L. Crocker, aka Phastman, 39, of Binghamton, New York who created Facebook Spreader, turning victim machines into spam bots.

Naveed Ahmed, aka Nav aka semaph0re, 27, of Tampa, Florida and
Phillip R. Fleitz, aka Strife, 31, of Indianapolis; and
Dewayne Watts, aka m3t4lh34d aka metal, 28, of Hernando, Florida maintained a spam botnet that utilized bulletproof servers in China.
(See unmasking of m3t4lh34d at http://www.heatware.com/eval.php?id=76400 )

Murtaza Saifuddin, aka rzor, 29, of Karachi, Sindh, Pakistan - identity theft, dealing in credit card numbers sales.

Daniel Placek, aka Nocen aka Loki aka Juggernaut aka M1rr0r, 27, of Glendale, Wisconsin - creating the Darkode forum, and selling malware.

Matjaz Skorjanc, aka iserdo aka serdo, 28, of Maribor, Slovenia, and
Florencio Carro Ruiz, aka NeTK aka Netkairo, 36, of Vizcaya, Spain, and
Mentor Leniqi, aka Iceman, 34, of Gurisnica, Slovenia, - racketeering conspiracy, wire fraud and bank fraud, device fraud and extortion.
Skorjanc also is accused of conspiring to organize the Darkode forum and of selling malware known as the ButterFly bot.

Rory Stephen Guidry, aka k@exploit.im, of Opelousas, Louisiana - selling botnets on Darkode.

In a related case, Aleksandr Andreevich Panin, aka Gribodemon, 26, of Tver, Russia;
and Hamza Bendelladj, aka Bx1, 27, of Tizi Ouzou, Algeria,
pleaded guilty on Jan. 28, 2014, and June 26, 2015, respectively - developing, distributing and controlling SpyEye, a malicious banking trojan
User avatar
Red Dwarf
You are kiillllling-a my bizinisss!
Posts: 10542
Joined: Tue Jun 27, 2006 2:01 am

Return to Arrests, Indictments and Convictions

Who is online

Users browsing this forum: No registered users and 1 guest