Jump to content

Roman Seleznev

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by DenBkh (talk | contribs) at 18:36, 28 February 2018. The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Roman Valerevich Seleznev
Роман Валерьевич Селезнев
Born1984 (age 40–41)
NationalityRussian
Other namesnCuX, Track2 (hacker handle)
CitizenshipRussian
Known forHacking
Criminal charge(s)Hacking, Wire fraud, Racketeering
FatherValery Seleznev

Roman Valerevich Seleznev (Template:Lang-ru; born 1984), also known by his hacker handle, Track2, is a Russian computer hacker. He was indicted in Washington in 2011, and has been convicted of hacking into servers to steal credit card data. Seleznev's activities have been speculated to have caused damages to banks and credit-card companies ranging in the millions of dollars. Seleznev was arrested on July 5, 2014, and was sentenced to 27 years in prison for counts of wire fraud, intentional damage to a protected computer, and identity theft.[1]

Biography

Seleznev is the son of Valery Seleznev, a member of the Duma, Russia’s parliament.[2]

Initial activity

Seleznev started his activities in earlier 2003, on Carderplanet, providing SSN and criminal history research service for fee, using stolen LexisNexis's accurint.com accounts, among others. Later on, Seleznev's employee created a scanner which allowed the user to scan the internet for MSRDP open ports (3389 by default). at the time, default configuration provided poor protected and many administrator accounts remained without a password. Exploiting this vulnerability, Seleznev and his partner gained an access to many remote computers, including ones containing financial and credit card data. At this point, Seleznev contacted BadB in order to gain his experience exploiting financial systems. In turn, BadB, an another notorious cyber criminal identified by USSS as Horohorin Vladislav in 2009, provided Seleznev with automated script which looked for traces of credit cards in systems and networks, and thus Seleznev obtained his first credit card dumps which, in turn, he resold to BadB. As the time went on, Seleznev became unsatisfied with BadB services and decided to start his own credit card dumps vending operation under nickname nCuX ("psycho" in Russian).

In 2008, Seleznev extended his operations from just scanning MSRDP with default passwords or no passwords at all to developing sophisticated malware which had the ability to intercept network traffic and search network shares, distributing it through various flaws in internet browsers by injecting malicious code into advertising traffic and thus he infected many computers, mostly in the United States.

In 2009, BadB started the first automated stolen credit card shop. Soon after that, Seleznev announced that he is out of business under nickname Ncux, but immediately created 2 other names track2 and bulba.cc,[3] which he used to operate automated stolen credit card vending shops. Besides, Seleznev bought whole advertising space for dumps section on then-prominent illegal carding forum, carder.su[4] In 2012, this forum was shut down during an operation mounted by DHS.[5] As BadB advertising campaign was also shut down on carder.su at the time, BadB was outraged and massive DDoS war ensued. However, in August 2010, BadB was arrested by USSS and Seleznev was left without competition for a while.

Terrorist attack

Main article: 2011 Marrakesh bombing

In 2011, while on vacation in Morocco, Seleznev was among the victims of a terrorist attack[6] where he received a severe head injury and was evacuated to Moscow for surgery.

Arrest and trial

Seleznev's 2014 arrest caused controversy as he was arrested outside of the United States, in Maldives,[7] and transported to Guam to stand trial. Citing "law enforcement reasons" the Justice Department would not disclose the location of Seleznev's arrest. Jeh Johnson, Secretary of Homeland Security, said in a statement that the arrest showed that "despite the increasingly borderless nature of transitional organized crime, the long arm of justice – and the Department of Homeland Security – will continue to disrupt and dismantle sophisticated criminal organizations".[8][9]

Russian officials complained that Seleznev's arrest amounted to "kidnapping" and said the US had failed to notify Russian consulates of Seleznev's arrest. The Russian Foreign Ministry indicated that the Maldives had been the site of Seleznev's arrest, and criticized the Maldives for failing to follow "international legal norms" in Seleznev's arrest.[10]

After an eight-day trial in 2016,[11] a federal court jury found Seleznev guilty of the 38 counts,[12][13] and the following year was sentenced to 27-years imprisonment.[1][14]

On May 19, 2017, Seleznev faced charges in Atlanta after being convicted in federal court.[15][16]

References

  1. ^ a b "Russian Cyber-Criminal Sentenced to 27 Years in Prison for Hacking and Credit Card Fraud Scheme".
  2. ^ Wilber, Del Quentin (7 July 2014). "Russian Charged by U.S. as Hacker Is Duma Member's Son". Bloomberg L.P. Retrieved 8 July 2014.
  3. ^ "Contained in the Investigation and Trial of Roman Seleznev – Dream Market URL". www.dream-market-url.com. Retrieved 2017-09-09.
  4. ^ Phishme, Gary Warner, Uab / (2016-08-25). "CyberCrime & Doing Time: Roman Seleznev (AKA Track2 / Bulba / Zagreb / smaus) Found Guilty on 38 of 40 Charges". CyberCrime & Doing Time. Retrieved 2017-09-09.{{cite web}}: CS1 maint: multiple names: authors list (link)
  5. ^ "Nevada Prosecutor And Homeland Security Investigations Special Agent Receive Awards For Their Work On Cybercrime Case". www.justice.gov. Retrieved 2017-09-09.
  6. ^ "Russian deputy's son hit in Morocco blast". sputniknews.com. Retrieved 2017-09-04.
  7. ^ "Russian MP incensed after son jailed in US". BBC News. 2017-04-21. Retrieved 2017-04-22.
  8. ^ "U.S. arrests Russian in hacking of retail systems". Reuters. 7 July 2014. Retrieved 8 July 2014.
  9. ^ "Russian Arrested in Hacking Case Filed in Seattle". American Broadcasting Company. 7 July 2014. Retrieved 8 July 2014.
  10. ^ "Russia Calls U.S. Arrest of Alleged Hacker 'Kidnapping'". The Moscow Times. 8 July 2014. Retrieved 8 July 2014.
  11. ^ "Roman Seleznev Gets Nearly 30 Years In Hacking Case". patch.com. 21 April 2017. Retrieved 21 May 2017.
  12. ^ "Russian Cyber-Criminal Convicted of 38 Counts Related to Hacking Businesses and Stealing More Than Two Million Credit Card Numbers".
  13. ^ Levi Pulkkinen (December 12, 2016). "The Seattle case against a Russian hacker just got weirder". Seattle Post-Intelligencer.
  14. ^ Perlroth, Nicole (21 April 2017). "Russian Hacker Sentenced to 27 Years in Credit Card Case". Retrieved 21 May 2017 – via NYTimes.com.
  15. ^ "Convicted Russian Cyber Criminal Roman Seleznev faces charges in Atlanta". www.justice.gov. Retrieved 21 May 2017.
  16. ^ "Roman Seleznev — Krebs on Security". krebsonsecurity.com. Retrieved 21 May 2017.
Retrieved from "https://en.wikipedia.org/enwiki/w/index.php?title=Roman_Seleznev&oldid=828126769"