BTC-e crypto thief faces 25 years for laundering $4B

Feb 07 2024

.bh__table, .bh__table_header, .bh__table_cell { border: 1px solid #C0C0C0; }
.bh__table_cell { padding: 5px; background-color: #FFFFFF; }
.bh__table_cell p { color: #2D2D2D; font-family: ‘Helvetica’,Arial,sans-serif !important; overflow-wrap: break-word; }
.bh__table_header { padding: 5px; background-color:#F1F1F1; }
.bh__table_header p { color: #2A2A2A; font-family:’Trebuchet MS’,’Lucida Grande’,Tahoma,sans-serif !important; overflow-wrap: break-word; }

Gone Phishing Banner

Welcome to Gone Phishing, your daily cybersecurity newsletter that laughs in the face of cyber dange mwahahaha ๐Ÿฆ๐Ÿ‘‘๐Ÿ’๐Ÿ—๐Ÿ™ƒ

Todayโ€™s hottest cybersecurity news stories:

  • ๐Ÿ’ธ Belarusian BTC-e crypto thief faces 25 years for laundering $4B ๐Ÿ’ฐ

  • ๐Ÿ—ฝ USA clamps down on illegal use of spyware w/ visa restrictions ๐Ÿšซ

  • ๐Ÿ’ผ โ€˜ResumeLootersโ€™ steal millions of CVs from job boards in APAC ๐ŸŒ

BTC-e ya later mate ๐Ÿ‘‹๏ธ๐Ÿ‘ฎ๐Ÿ’€

๐Ÿš” Alleged BTC-e Operator Faces Money Laundering Charges ๐Ÿ”„๐Ÿ’ฐ

Aliaksandr Klimenka, a 42-year-old Belarusian and Cypriot national allegedly tied to the now-defunct cryptocurrency exchange BTC-e, has been extradited to the U.S. and faces charges related to money laundering and operating an unlicensed money services business. ๐Ÿ•ต๏ธโ€โ™‚๏ธ๐Ÿ’ผ

BTC-e, operational since 2011, was seized in July 2017 amid accusations of laundering over $4 billion, including funds from the infamous Mt. Gox hack. Court documents describe the exchange as a hub for cybercrime and money laundering, facilitating illicit activities such as hacking, ransomware, and narcotics distribution. ๐Ÿ”’

๐Ÿ“ The U.S. Department of Justice (DoJ) alleges that Klimenka maintained and leased servers for BTC-e, playing a crucial role in its operations. Additionally, the exchange failed to implement anti-money laundering (AML) processes or know-your-customer (KYC) verifications, as required by U.S. law.

๐Ÿ” In a related case, Russian nationals Alexey Bilyuchenko and Aleksandr Verner were charged for their involvement in the 2014 Mt. Gox heist, further highlighting the interconnected nature of cybercrime networks. Meanwhile, Noah Michael Urban, associated with the Scattered Spider cybercrime group, faces charges for wire fraud and identity theft.

๐Ÿ’ก These developments underscore the ongoing battle against cybercrime, with law enforcement agencies targeting individuals and groups involved in cryptocurrency-related offences. The recent announcement of charges against individuals linked to a SIM swapping attack on crypto exchange FTX demonstrates the breadth and complexity of these criminal operations.

๐Ÿ›ก๏ธ As authorities continue to crackdown on illicit activities in the crypto space, blockchain analytics firms like Elliptic play a crucial role in tracking and identifying suspicious transactions. Collaboration between governments and private entities is essential in combating cyber threats and safeguarding the integrity of financial systems. ๐ŸŒ๐Ÿ”

Learn AI in 5 minutes a day. We'll teach you how to save time and earn more with AI. Join 400,000+ free daily readers for trending tools, productivity boosting prompts, the latest news, and more.

US: No visas vis-ร -vis your snooping ๐Ÿถ๐Ÿ‘€โ›”

๐Ÿ”’ U.S. Implements Visa Restrictions to Combat Misuse of Commercial Spyware ๐Ÿ•ต๏ธโ€โ™‚๏ธ๐Ÿ’ป

In a significant move aimed at safeguarding privacy and human rights, the U.S. State Department has introduced a new policy imposing visa restrictions on individuals associated with the illegal use of commercial spyware to surveil civil society members. Secretary of State Antony Blinken emphasised the threat posed by the misuse of such technology, linking it to violations of fundamental freedoms and even grave human rights abuses.

๐Ÿ“ The policy targets individuals who unlawfully surveil, harass, suppress, or intimidate others using commercial spyware, as well as those who profit from its misuse. It also extends to the private sector companies developing and selling these spyware tools, known as private sector offensive actors (PSOAs). While the enforcement of these restrictions for individuals with visa waiver eligibility remains unclear, executives affected by the ban may lose eligibility for the visa waiver program, requiring them to apply for a visa to enter the U.S.

๐Ÿ› ๏ธ This development follows revelations by Access Now and the Citizen Lab regarding the targeting of journalists, lawyers, and human rights activists in Jordan with NSO Group's Pegasus spyware. The U.S. government's sanctions against NSO Group and Candiru in 2021 underscore its commitment to holding spyware vendors accountable for malicious activities.

๐Ÿž๏ธ The broader landscape of commercial spyware is complex, with dozens of vendors like Cy4Gate and Negg Group enabling governments to deploy sophisticated surveillance tools against individuals. Google's Threat Analysis Group highlights the significant role played by private sector entities in the proliferation of surveillance technology, emphasising the need for enhanced regulation and oversight.

As the global market for commercial cyber intrusion software expands, governments face growing challenges in combating cyber threats while protecting individual rights and freedoms.

The U.S. visa restrictions represent a proactive step towards addressing these challenges and promoting accountability in the use of surveillance technology. ๐Ÿ›ก๏ธ๐ŸŒ

๐ŸŽฃ Catch of the Day!! ๐ŸŒŠ๐ŸŸ๐Ÿฆž

๐Ÿƒย The Motley Fool: โ€œFool me once, shame on โ€” shame on you. Fool me โ€” you can't get fooled again.โ€ Good olโ€™ George Dubya ๐Ÿ˜‚ Let us tell whoโ€™s not fooling around though; thatโ€™s the Crรผe ๐Ÿ‘€ at Motley Fool. Youโ€™d be a fool (alright, enough already! ๐Ÿ™ˆ) not to check out their Share Tips from time to time so your savings can one day emerge from their cocoon as a beautiful butterfly! ๐Ÿ› Kidding aside, if you check out their website theyโ€™ve actually got a ton of great content with a wide variety of different investment ideas to suit most budgets ๐Ÿค‘ย (LINK)


๐Ÿšตย Wander: Find your happy place. Cue Happy Gilmore flashback ๐ŸŒ๏ธโ›ณ๐ŸŒˆ๐Ÿ•Š๏ธ Mmmm Happy Placeโ€ฆ ๐Ÿ˜‡ So, weโ€™ve noticed a lot of you guys are interested in travel. As are we! We stumbled upon this cool company that offers a range of breath-taking spots around the United States and, honestly, the website alone is worth a gander. When all you see about the Land of the free and the home of the brave is news of rioting, looting and school shootings, itโ€™s easy to forget how beautiful some parts of it are. The awe-inspiring locations along with the innovative architecture of the hotels sets Wander apart from your run of the mill American getaway ๐Ÿž๏ธ๐Ÿ˜ย (LINK)


๐ŸŒŠย Digital Ocean: If you build it they will come. Nope, weโ€™re not talking about a baseball field for ghosts โšพ๐Ÿ‘ป๐Ÿฟ (Great movie, to be fair ๐Ÿ™ˆ). This is the Digital Ocean whoโ€™ve got a really cool platform for building and hosting pretty much anything you can think of. If you check out their website youโ€™ll find yourself catching the buzz even if you canโ€™t code (guilty ๐Ÿ˜‘). But if you can and youโ€™re looking for somewhere to test things out or launch something new or simply enhance what youโ€™ve got, weโ€™d recommend checking out their services foโ€™ sho ๐Ÿ˜‰ And how can you not love their slogan: Dream it. Build it. Grow it. Right on, brother! ๐ŸŒฟย (LINK)

Hackers: Resume seeโ€ฆ Jobโ€™s a good'un! ๐Ÿ˜ฌ๐Ÿ˜ฌ๐Ÿ˜ฌ

๐Ÿ›ก๏ธ Beware of ResumeLooters: APAC Companies Under Attack! ๐Ÿ’ผ๐ŸŽฏ

A new threat actor dubbed ResumeLooters has been targeting employment agencies and retailers across the Asia-Pacific (APAC) region since early 2023, aiming to pilfer sensitive data. Singapore-based Group-IB uncovered the hacking group's activities, highlighting breaches on 65 websites between November and December 2023.

๐Ÿ”“ The stolen data, totaling over 2 million records, includes user details like names, phone numbers, emails, and even job seekers' employment history. Security researcher Nikita Rostovcev warns of SQL injection attacks used to snatch user databases, with the stolen information peddled in Telegram channels.

๐ŸŒ Most compromised websites hail from India, Taiwan, Thailand, and other APAC nations, but incidents have also been reported globally. ResumeLooters' tactics involve leveraging tools like sqlmap for SQL injections and deploying malicious scripts to hijack administrator credentials.

๐Ÿ’ฐ The motive behind the attacks appears to be financial gain, with ResumeLooters setting up Telegram channels to sell stolen data. Rostovcev emphasises the importance of robust security measures, noting the prevalence of outdated yet effective SQL attacks and the group's relentless pursuit of vulnerabilities, including XSS exploits.

Stay vigilant against cyber threats and fortify your defences! ๐Ÿšจ๐Ÿ”’ And donโ€™t let this put you off your job hunt! โœŠ Stay safe cyber squad ๐Ÿ›ก๏ธ

๐Ÿ—ž๏ธ Extra, Extra! Read all about it!

Every few weeks, we carefully select three hot newsletters to show you. Reputation is everything, so any links we share come from personal recommendation or carefully researched businesses at the time of posting. Enjoy!

  • The GeekAI: A daily 3 min newsletter on what matters in AI, with all the new AI things coming to market its good to stay ahead of the curve.

  • Wealthy Primate: Want to earn over $100k a year in IT or cybersecurity? 20 year veteran 'Wealthy Primate' might be able to help you climb that tree ๐Ÿ’๐ŸŒด with his stick and banana approach ๐ŸŒ๐Ÿ˜

  • Techspresso:ย Receive a daily summary of the most important AI and Tech news, selected from 50+ media outlets (The Verge, Wired, Tech Crunch etc)

Let us know what you think!

So long and thanks for reading all the phish!

Recent articles