Aaron James Glende, a 35-year-old from Winona, Minnesota, was sentenced this week by an Atlanta court to four years and two months in prison for selling stolen information on a dark web marketplace called AlphaBay.
Glende was initially charged with bank fraud, access device fraud and aggravated identity theft, but in September he pleaded guilty to the last two charges.
AlphaBay is a highly popular dark web marketplace used to buy and sell weapons, counterfeit products, drugs and chemicals, and items that can be used to commit fraud. Bitcoin is typically used for transactions on the website, but other digital currencies are also accepted. The value of Monero, for example, increased significantly in September after it was integrated by AlphaBay.
According to U.S. authorities, between November 2015 and May 2016, Glende offered to sell stolen information, including bank account data in AlphaBay’s “Fraud” section. IcyEagle advertised SunTrust Bank accounts with various balances, including accounts with between $30,000 and $150,000, which he sold for $66.99. SunTrust accounts with balances of $100-$500 were sold for $10.
An undercover FBI agent who purchased SuntTrust account information from Glende confirmed that the usernames, passwords, email and physical addresses, phone numbers, and bank account details were valid.
A search of the cybercriminal’s computer after his arrest revealed that he possessed hundreds of credit card and bank account numbers, social security numbers, banking credentials, and logins for online accounts.
While authorities specifically named SunTrust accounts, cyber risk intelligence firm SurfWatch Labs said IcyEagle also sold Amazon gift cards and logins for various types of online services, including email, dating sites, and reward programs. SurfWatch reported that the fraudster also sold SunTrust accounts with balances ranging between $250,000 and $500,000 for $230.
In March, the Winona Post reported that local police had arrested Glende after postal inspectors found prescription pills in his packages.
“It’s unclear how — or even if — those two events are linked, but shortly after that drug-related arrest the FBI appears to have begun targeting IcyEagle’s postings on AlphaBay,” SurfWatch said. “We can speculate that after U.S. Postal Inspectors tied Glende to selling prescription drugs, the search warrant and subsequent investigation may have revealed evidence leading law enforcement to AlphaBay and IcyEagle — or vice versa.”
Related: Behind the Buzz – What Intel Can You Gather from Dark Web Markets?
Related: Top Reasons to Pay Attention to the Dark Web
Related: Hundreds Access Fake Bank Account Data “Leaked” to Dark Web

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.
More from Eduard Kovacs
- High-Severity Vulnerabilities Found in WellinTech Industrial Data Historian
- CISA Expands Cybersecurity Committee, Updates Baseline Security Goals
- Exploitation of 55 Zero-Day Vulnerabilities Came to Light in 2022: Mandiant
- Organizations Notified of Remotely Exploitable Vulnerabilities in Aveva HMI, SCADA Products
- Waterfall Security, TXOne Networks Launch New OT Security Appliances
- Hitachi Energy Blames Data Breach on Zero-Day as Ransomware Gang Threatens Firm
- New York Man Arrested for Running BreachForums Cybercrime Website
- Exploitation of Recent Fortinet Zero-Day Linked to Chinese Cyberspies
Latest News
- High-Severity Vulnerabilities Found in WellinTech Industrial Data Historian
- Chrome 111 Update Patches High-Severity Vulnerabilities
- BreachForums Shut Down Over Law Enforcement Takeover Concerns
- CISA Expands Cybersecurity Committee, Updates Baseline Security Goals
- Malware Trends: What’s Old Is Still New
- Burnout in Cybersecurity – Can It Be Prevented?
- Spain Needs More Transparency Over Pegasus: EU Lawmakers
- Ransomware Will Likely Target OT Systems in EU Transport Sector: ENISA
