Virtual Event Today: Supply Chain Security Summit - Register Now

Security Experts:

Connect with us

Hi, what are you looking for?


Fraud & Identity Theft

Dark Web Vendor “IcyEagle” Sentenced to Prison

Aaron James Glende, a 35-year-old from Winona, Minnesota, was sentenced this week by an Atlanta court to four years and two months in prison for selling stolen information on a dark web marketplace called AlphaBay.

Aaron James Glende, a 35-year-old from Winona, Minnesota, was sentenced this week by an Atlanta court to four years and two months in prison for selling stolen information on a dark web marketplace called AlphaBay.

Glende was initially charged with bank fraud, access device fraud and aggravated identity theft, but in September he pleaded guilty to the last two charges.

AlphaBay is a highly popular dark web marketplace used to buy and sell weapons, counterfeit products, drugs and chemicals, and items that can be used to commit fraud. Bitcoin is typically used for transactions on the website, but other digital currencies are also accepted. The value of Monero, for example, increased significantly in September after it was integrated by AlphaBay.

According to U.S. authorities, between November 2015 and May 2016, Glende offered to sell stolen information, including bank account data in AlphaBay’s “Fraud” section. IcyEagle advertised SunTrust Bank accounts with various balances, including accounts with between $30,000 and $150,000, which he sold for $66.99. SunTrust accounts with balances of $100-$500 were sold for $10.

An undercover FBI agent who purchased SuntTrust account information from Glende confirmed that the usernames, passwords, email and physical addresses, phone numbers, and bank account details were valid.

A search of the cybercriminal’s computer after his arrest revealed that he possessed hundreds of credit card and bank account numbers, social security numbers, banking credentials, and logins for online accounts.

While authorities specifically named SunTrust accounts, cyber risk intelligence firm SurfWatch Labs said IcyEagle also sold Amazon gift cards and logins for various types of online services, including email, dating sites, and reward programs. SurfWatch reported that the fraudster also sold SunTrust accounts with balances ranging between $250,000 and $500,000 for $230.

In March, the Winona Post reported that local police had arrested Glende after postal inspectors found prescription pills in his packages.

“It’s unclear how — or even if — those two events are linked, but shortly after that drug-related arrest the FBI appears to have begun targeting IcyEagle’s postings on AlphaBay,” SurfWatch said. “We can speculate that after U.S. Postal Inspectors tied Glende to selling prescription drugs, the search warrant and subsequent investigation may have revealed evidence leading law enforcement to AlphaBay and IcyEagle — or vice versa.”

Related: Behind the Buzz – What Intel Can You Gather from Dark Web Markets?

Related: Top Reasons to Pay Attention to the Dark Web

Related: Hundreds Access Fake Bank Account Data “Leaked” to Dark Web

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...


Pig Butchering, also known as Sha Zhu Pan and CryptoRom, is an ugly name for an ugly scam.


A digital ad fraud scheme dubbed "VastFlux" spoofed over 1,700 apps and peaked at 12 billion ad requests per day before being shut down.


Spanish and US authorities have dismantled a cybercrime ring that defrauded victims of more than $5.3 million.


Australian authorities sentence Sydney man for using leaked data stolen from wireless carrier Optus to conduct SMS scams.

Application Security

After skipping last month, Adobe returned to its scheduled Patch Tuesday cadence with the release of fixes for at least 38 vulnerabilities in multiple...