CONFERENCE NOW LIVE: Threat Detection & Incident Response (TDIR) Summit - Join the Event In-Progress
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Canadian-US National Sentenced to Prison for Cybercrime Schemes

A Canadian and U.S. dual-national was sentenced to 11 years in prison for laundering illicit funds from cybercrime schemes such as business email compromise, ATM cash-outs, and bank cyber-heists.

A Canadian and U.S. dual-national was sentenced to 11 years in prison for laundering illicit funds from cybercrime schemes such as business email compromise, ATM cash-outs, and bank cyber-heists.

The man, Ghaleb Alaumary, 36, of Mississauga, Ontario, pleaded guilty to two counts of money laundering conspiracy and received a 140-months prison sentence.  He was also ordered to pay more than $30 million in restitution.

Documents presented in court show that Alaumary and his co-conspirators engaged in ATM cash-out operations, BEC schemes, and bank cyber-heists to steal funds. Then, they used various bank accounts and digital currency to launder the money.

Alaumary pleaded guilty in the Southern District of Georgia in one money laundering case in which he conspired to send spoofed emails to a Canadian university in 2017. The emails purported to come from a construction company and demanded that payment was made for a major building project.

[ READ: Zoho Confirms Zero-Day Authentication Bypass Attacks ]

The scheme resulted in the university wiring $11.8 million CAD (roughly $9.4 million USD) to a bank account controlled by Alaumary and his co-conspirators, who then arranged with various people in the U.S. and abroad to launder the funds, according to a statement from the U.S. Justice Department.

Weeks later, Alaumary was involved in a scheme in which a co-conspirator made several trips to Texas to steal hundreds of thousands of dollars through impersonating wealthy bank customers. 

Alaumary pleaded guilty in a second case to recruiting individuals to withdraw stolen funds from ATMs. The funds came from bank cyber-heists and various fraud schemes and were laundered through cash withdrawals, wire transfers, and through cryptocurrency.

Advertisement. Scroll to continue reading.

Some of the funds, the United States Department of Justice reveals, came from a 2019 Maltese bank cyber-heist perpetrated by North Korean hackers.

Alaumary and his co-conspirators also targeted banks headquartered in India, Malta, and Pakistan, as well as businesses in the U.S. and the U.K., individuals in the U.S., and a professional soccer club in the U.K.

Related: US Sentences Russian, North Macedonian in Cyber Fraud Case

Related: ‘Money Mule’ Operator Gets Seven-Year Prison Sentence 

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Register

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Register

People on the Move

Jeremy Koppen has left Mandiant after 13 years to become the CISO of Equifax.

Engineering and technology solutions provider Amentum has appointed Max Shier as its CISO.

PAM provider Keeper Security has appointed Shane Barney as its Chief Information Security Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.