Law enforcement authorities have seized the domains of an online marketplace for stolen login credentials and other personally identifying information (PII).
On Tuesday, Portuguese authorities seized a website selling over 5.85 million records of PII, while law enforcement agencies in the US seized four domains associated with the online shop, namely ‘wt1shop.net’, ‘wt1store.cc’, wt1store.com’, and ‘wt1store.net’.
A federal complaint unsealed on Tuesday charges Nicolai Colesnicov, 36, of the Republic of Moldova, with operating wt1shop to facilitate the selling of stolen credentials and PII.
On the online market, vendors were offering roughly 25,000 scanned driver’s licenses/passports, 1.7 million stolen login credentials for online retailers, the details of 108,000 bank accounts, and roughly 21,800 credit cards.
According to the affidavit accompanying the federal complaint, visitors of the illegal marketplace could purchase the stolen data using Bitcoin. The online market also had a forum that users could access.
An image of the wt1shop database obtained in June 2020 by Dutch law enforcement officials showed that the marketplace had roughly 60,823 registered users, 91 of which were sellers and two were administrators.
The affidavit alleges that, as of June 2020, roughly 2.4 million credentials had been sold on wt1shop, for total proceeds of $4 million.
The sold credentials were for online retailers, financial institutions, PayPal accounts, and email accounts. Other credentials were for remote access to computers, servers, and other devices.
In December 2021, the website had over 106,000 users and 94 sellers and offered a total of roughly 5.85 million credentials for sale.
Authorities have traced to Colesnicov Bitcoin sales made on the illegal marketplace, payments made to wt1shop’s webhost, email addresses related to the shop, and associated login information, and have determined that Colesnicov was the operator of wt1shop.
Colesnicov has been charged with conspiracy and trafficking in unauthorized access devices and faces up to 10 years in federal prison.
Related: Russian Operator of Cybercrime Marketplace Indicted in US
Related: Moderator of AlphaBay Dark Web Marketplace Gets 11 Years in Prison
Related: German Police Take Down ‘World’s Largest Darknet Marketplace’
More from Ionut Arghire
- Critical WooCommerce Payments Vulnerability Leads to Site Takeover
- PoC Exploit Published for Just-Patched Veeam Data Backup Solution Flaw
- CISA Gets Proactive With New Pre-Ransomware Alerts
- CISA, NSA Issue Guidance for IAM Administrators
- Cisco Patches High-Severity Vulnerabilities in IOS Software
- ‘Nexus’ Android Trojan Targets 450 Financial Applications
- ‘Badsecrets’ Open Source Tool Detects Secrets in Many Web Frameworks
- Chrome 111 Update Patches High-Severity Vulnerabilities
Latest News
- US Charges 20-Year-Old Head of Hacker Site BreachForums
- Tesla Hacked Twice at Pwn2Own Exploit Contest
- CISA Ships ‘Untitled Goose Tool’ to Hunt for Microsoft Azure Cloud Infections
- Critical WooCommerce Payments Vulnerability Leads to Site Takeover
- PoC Exploit Published for Just-Patched Veeam Data Backup Solution Flaw
- CISA Gets Proactive With New Pre-Ransomware Alerts
- Watch on Demand: Supply Chain & Third-Party Risk Summit Sessions
- TikTok CEO Grilled by Skeptical Lawmakers on Safety, Content
