Pages:
Author

Topic: US charges two Russian crypto hackers - page 3. (Read 807 times)

legendary
Activity: 2814
Merit: 1192
September 19, 2020, 07:06:38 AM
#15
This is a move that I would personally encouraged because it sends a message to people that the crypto world is not a free for all that you can come in because you have a special skill or smarter than other but you believe that those skills can not be put into better use than to steal people resources and make them cry just because they wanted to earn legitimate inflow of a platform that they have been provided such opportunity. Kudos to the United States government agencies for taking this initiative.

They have no jurisdiction in Russia. We've seen numerous times how the Russian government denied extradition of their citizens to the EU and the US, so this decision by US government is just for show. It will all change if those hackers are dumb enough to travel to the EU and get caught there, but as long as they stay in Russia they'll rather get employed by the secret service than sent for trial to the States.
hero member
Activity: 2842
Merit: 772
September 19, 2020, 06:53:58 AM
#14
If i were a major government I would have at least Two mixers under my control.

It is so easy to do for them. Run it legit until someone moves a lot of “bad” coins and seize them for auction.

with these idea your giving people an idea to not use mixers because  people use mixers because they thought it was decentralized and they dont wana get tracked but this idea is also great to catch the person that are guilty for doing illegal and bad deeds  and besides , they wont also know that the mixer they use is run under by government because owners wont also said that publically  . on the other hand i dont think that the caught hackers are not smart to forgot to conceal thier selves but it could be that authorities are just smarter than them .

On the contrary, we really don't know if there are state sponsored mixers now.

I will point you to a thread, maybe you haven't seen this, but it is a good read, Breaking Mixing Services.

Anyways, this thought of a mixer run by government or at least in their control could be unlikely, but it could also be "true and practical for them".
hero member
Activity: 1330
Merit: 569
September 18, 2020, 08:57:02 AM
#13
This is a move that I would personally encouraged because it sends a message to people that the crypto world is not a free for all that you can come in because you have a special skill or smarter than other but you believe that those skills can not be put into better use than to steal people resources and make them cry just because they wanted to earn legitimate inflow of a platform that they have been provided such opportunity. Kudos to the United States government agencies for taking this initiative.
hero member
Activity: 2870
Merit: 594
September 18, 2020, 05:39:32 AM
#12
If i were a major government I would have at least Two mixers under my control.

It is so easy to do for them. Run it legit until someone moves a lot of “bad” coins and seize them for auction.

with these idea your giving people an idea to not use mixers because  people use mixers because they thought it was decentralized and they dont wana get tracked but this idea is also great to catch the person that are guilty for doing illegal and bad deeds  and besides , they wont also know that the mixer they use is run under by government because owners wont also said that publically  . on the other hand i dont think that the caught hackers are not smart to forgot to conceal thier selves but it could be that authorities are just smarter than them .
Nah, I will still used mixers though, if I wanted to hide my track from the prying eyes of those alphabet agencies. But come to think of it, possible right? So probably he is playing devil's advocate here, but not implausible, maybe one of our favourite mixers are really under the government control that's why they've always caught this thieves.
full member
Activity: 1638
Merit: 122
September 17, 2020, 11:30:43 PM
#11
If i were a major government I would have at least Two mixers under my control.

It is so easy to do for them. Run it legit until someone moves a lot of “bad” coins and seize them for auction.

with these idea your giving people an idea to not use mixers because  people use mixers because they thought it was decentralized and they dont wana get tracked but this idea is also great to catch the person that are guilty for doing illegal and bad deeds  and besides , they wont also know that the mixer they use is run under by government because owners wont also said that publically  . on the other hand i dont think that the caught hackers are not smart to forgot to conceal thier selves but it could be that authorities are just smarter than them .
legendary
Activity: 4326
Merit: 8950
'The right to privacy matters'
September 17, 2020, 10:17:56 PM
#10
If i were a major government I would have at least Two mixers under my control.

It is so easy to do for them. Run it legit until someone moves a lot of “bad” coins and seize them for auction.
legendary
Activity: 3080
Merit: 1353
September 17, 2020, 07:45:32 PM
#9
I would say that these hackers didn't take care of their footprints and that's why the US government was able to follow their tracks and identify them through their names.

So I agree that it's only one part of the equation, and that's why perhaps government are offering a $625,000 now on someone who can break Monero because most likely hackers are going to used it instead of Bitcoin and US government wanted to stay on top of the game. And because Bitcoin are no longer viable crypto for these criminals as they are easily been identified by blockchain analysis.

biggest issue is how 'honest' is a coin mixer

are they all in the hands of one government or another  and if you use large amounts of hot coins you will be caught?

It is very possible that  is true.


It's not that far from the truth, maybe some coin mixer are under the government? Just another conspiracy theory but it is not far fetch and it's really possible. As for the honestly of some mixers, there are a lot who have pulled a exit scam already, so I would say that they can't be really trusted specially if you are going to mix huge amount of bitcoins or even those hot coins.
hero member
Activity: 2842
Merit: 772
September 17, 2020, 05:33:51 PM
#8
Not sure how these court cases usually play out, but in theory a good lawyer is going to ask the government how they tracked these users down and unless it's a sealed case, those methods should be made public, no?

I think it should be made public in my opinion, but then again, it will just used blockchain analysis as how they identified the culprit, but if you look at the court documents, these hackers didn't hide their identify, in fact it is there in plain sight that's why it is easy for government authorities to name then with blockchain footprints.

@philipma1957 - you have a point though, there are numerous seizures of big mixers already and it's very unlikely that a famous mixer hasn't been taken down even if there's report that it has been used by criminals to mix stolen coins, hmmm. Are they secretly working with the government?
copper member
Activity: 336
Merit: 35
September 17, 2020, 11:12:07 AM
#7
Not sure how these court cases usually play out, but in theory a good lawyer is going to ask the government how they tracked these users down and unless it's a sealed case, those methods should be made public, no?
legendary
Activity: 4326
Merit: 8950
'The right to privacy matters'
September 17, 2020, 07:58:33 AM
#6
I would say that these hackers didn't take care of their footprints and that's why the US government was able to follow their tracks and identify them through their names.

So I agree that it's only one part of the equation, and that's why perhaps government are offering a $625,000 now on someone who can break Monero because most likely hackers are going to used it instead of Bitcoin and US government wanted to stay on top of the game. And because Bitcoin are no longer viable crypto for these criminals as they are easily been identified by blockchain analysis.

biggest issue is how 'honest' is a coin mixer

are they all in the hands of one government or another  and if you use large amounts of hot coins you will be caught?

It is very possible that  is true.

hero member
Activity: 1344
Merit: 540
September 17, 2020, 01:52:37 AM
#5
I would say that these hackers didn't take care of their footprints and that's why the US government was able to follow their tracks and identify them through their names.

Most definitely the case. It's mind boggling how some people have the skills to hack accounts, but not enough knowledge to actually effectively CoinJoin and/or mix the coins. Thankfully it seems like they're incompetent in the privacy side of things though.
I totally agree, it's kinda like ironic how intelligent these hackers are in finding ways to get unauthorized access and to be able to stole millions worth of cryptocurrency in top exchanges but lacks the knowledge on how to 'fence' those illegal funds. But I will get them the benefit of the doubt to used CoinJoin that time just because it's not yet gaining some attention. But still exchanging these stolen funds with the personal data of the hackers is mind blowing.
mk4
legendary
Activity: 2870
Merit: 3873
📟 t3rminal.xyz
September 17, 2020, 12:15:19 AM
#4
I would say that these hackers didn't take care of their footprints and that's why the US government was able to follow their tracks and identify them through their names.

Most definitely the case. It's mind boggling how some people have the skills to hack accounts, but not enough knowledge to actually effectively CoinJoin and/or mix the coins. Thankfully it seems like they're incompetent in the privacy side of things though.
legendary
Activity: 3080
Merit: 1353
September 16, 2020, 09:22:31 PM
#3
I would say that these hackers didn't take care of their footprints and that's why the US government was able to follow their tracks and identify them through their names.

So I agree that it's only one part of the equation, and that's why perhaps government are offering a $625,000 now on someone who can break Monero because most likely hackers are going to used it instead of Bitcoin and US government wanted to stay on top of the game. And because Bitcoin are no longer viable crypto for these criminals as they are easily been identified by blockchain analysis.
legendary
Activity: 4326
Merit: 8950
'The right to privacy matters'
September 16, 2020, 07:24:55 PM
#2
US DOJ has filed charges against two Russian hackers in connection of stealing $16 million worth of currency from trading platforms, Poloniex, Binance, and Gemini. The two Russians hackers are:

(1) Danil Potekhin (aka cronuswar)
(2) Dmitrii Karasavidi;


Here is the official court documents: https://www.documentcloud.org/documents/7211805-Potekhin-Superseding-Indictment.html





Quote
Washington - Today, in a coordinated action with the U.S. Department of Justice and the U.S. Department of Homeland Security, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) sanctioned two Russian nationals for their involvement in a sophisticated phishing campaign in 2017 and 2018 that targeted customers of two U.S.-based and one foreign-based virtual asset service providers. American citizens and businesses were among the victims of this malicious cyber-enabled activity, which resulted in combined losses of at least $16.8 million.

“The individuals who administered this scheme defrauded American citizens, businesses, and others by deceiving them and stealing virtual currency from their accounts,” said Secretary Steven T. Mnuchin. “The Treasury Department will continue to use our authorities to target cybercriminals and remains committed to the safe and secure use of emerging technologies in the financial sector.”

Danil Potekhin (Potekhin) and Dmitrii Karasavidi (Karasavidi) are being designated pursuant to Executive Order (E.O.) 13694, as amended by E.O. 13757, which targets malicious cyber-enabled activities, including those related to the significant misappropriation of funds or personal identifiers for private financial gain. Potekhin and Karasavidi are also the subjects of an indictment unsealed today by the Department of Justice.

Potekhin created numerous web domains that mimicked those of legitimate virtual currency exchanges. This tactic, known as spoofing, exploits Internet users’ trust in known companies and organizations to fraudulently obtain their personal information. When unwitting customers accessed Potekhin’s spoofed websites and entered their login information, Potekhin and his accomplices stole their login credentials and gained access to their real accounts. The attackers then employed a variety of methods to exfiltrate their ill-gotten virtual currency: using exchange accounts created using fictitious or stolen identities; circumventing exchanges’ internal controls; swapping into different types of virtual currency; moving virtual currency through multiple intermediary addresses; and a market manipulation scheme in which inexpensive virtual currency was purchased at a fast rate to increase demand and price, then quickly sold for a higher price to glean quick profit. Karasavidi laundered the proceeds of the attacks into an account in his name. He attempted to conceal the nature and source of the funds by transferring them in a layered and sophisticated manner through multiple accounts and multiple virtual currency blockchains. Ultimately, the stolen virtual currency was traced to Karasavidi’s account, and millions of dollars in virtual currency and U.S. dollars was seized in a forfeiture action by the United States Secret Service.

Potekhin and Karasavidi’s actions underscore the evolving threat that global financial institutions face from cybercriminals, who employ a variety of sophisticated schemes to profit at their victims’ expense.

OFAC closely coordinated today’s action with the United States Secret Service’s San Francisco Field Office and with the U.S. Attorney’s Office for the Northern District of California. Treasury is committed to collaborating with law enforcement to respond to evolving threats from malicious actors who exploit virtual currencies and target legitimate virtual asset service providers and their customers.

https://home.treasury.gov/news/press-releases/sm1123

In as much as these hackers trying to obfuscate their identity thru elaborate scheme, still the US government was able to track and trace the stolen crypto's to this individuals. So hacking is just one part of the equation, the other part is how to hide yourself which is very difficult since blockchain analysis is also evolving very quickly.


this is a nice find.  as to tracing abilities of the gov  maybe the hackers were a bit dumb or maybe just maybe the mixers they used were setup by governments.


We won't know as we won't see a digital  trail to follow .  But it seems to me a government run mixer would be the best way to catch them.



note I moved my comment to correct spot
hero member
Activity: 2632
Merit: 833
September 16, 2020, 07:15:58 PM
#1
US DOJ has filed charges against two Russian hackers in connection of stealing $16 million worth of currency from trading platforms, Poloniex, Binance, and Gemini. The two Russians hackers are:

(1) Danil Potekhin (aka cronuswar)
(2) Dmitrii Karasavidi;


Here is the official court documents: https://www.documentcloud.org/documents/7211805-Potekhin-Superseding-Indictment.html





Quote
Washington - Today, in a coordinated action with the U.S. Department of Justice and the U.S. Department of Homeland Security, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) sanctioned two Russian nationals for their involvement in a sophisticated phishing campaign in 2017 and 2018 that targeted customers of two U.S.-based and one foreign-based virtual asset service providers. American citizens and businesses were among the victims of this malicious cyber-enabled activity, which resulted in combined losses of at least $16.8 million.

“The individuals who administered this scheme defrauded American citizens, businesses, and others by deceiving them and stealing virtual currency from their accounts,” said Secretary Steven T. Mnuchin. “The Treasury Department will continue to use our authorities to target cybercriminals and remains committed to the safe and secure use of emerging technologies in the financial sector.”

Danil Potekhin (Potekhin) and Dmitrii Karasavidi (Karasavidi) are being designated pursuant to Executive Order (E.O.) 13694, as amended by E.O. 13757, which targets malicious cyber-enabled activities, including those related to the significant misappropriation of funds or personal identifiers for private financial gain. Potekhin and Karasavidi are also the subjects of an indictment unsealed today by the Department of Justice.

Potekhin created numerous web domains that mimicked those of legitimate virtual currency exchanges. This tactic, known as spoofing, exploits Internet users’ trust in known companies and organizations to fraudulently obtain their personal information. When unwitting customers accessed Potekhin’s spoofed websites and entered their login information, Potekhin and his accomplices stole their login credentials and gained access to their real accounts. The attackers then employed a variety of methods to exfiltrate their ill-gotten virtual currency: using exchange accounts created using fictitious or stolen identities; circumventing exchanges’ internal controls; swapping into different types of virtual currency; moving virtual currency through multiple intermediary addresses; and a market manipulation scheme in which inexpensive virtual currency was purchased at a fast rate to increase demand and price, then quickly sold for a higher price to glean quick profit. Karasavidi laundered the proceeds of the attacks into an account in his name. He attempted to conceal the nature and source of the funds by transferring them in a layered and sophisticated manner through multiple accounts and multiple virtual currency blockchains. Ultimately, the stolen virtual currency was traced to Karasavidi’s account, and millions of dollars in virtual currency and U.S. dollars was seized in a forfeiture action by the United States Secret Service.

Potekhin and Karasavidi’s actions underscore the evolving threat that global financial institutions face from cybercriminals, who employ a variety of sophisticated schemes to profit at their victims’ expense.

OFAC closely coordinated today’s action with the United States Secret Service’s San Francisco Field Office and with the U.S. Attorney’s Office for the Northern District of California. Treasury is committed to collaborating with law enforcement to respond to evolving threats from malicious actors who exploit virtual currencies and target legitimate virtual asset service providers and their customers.

https://home.treasury.gov/news/press-releases/sm1123

In as much as these hackers trying to obfuscate their identity thru elaborate scheme, still the US government was able to track and trace the stolen crypto's to this individuals. So hacking is just one part of the equation, the other part is how to hide yourself which is very difficult since blockchain analysis is also evolving very quickly.
Pages:
Jump to: