Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Fraud & Identity Theft

Dark Web Vendor “IcyEagle” Sentenced to Prison

Aaron James Glende, a 35-year-old from Winona, Minnesota, was sentenced this week by an Atlanta court to four years and two months in prison for selling stolen information on a dark web marketplace called AlphaBay.

Aaron James Glende, a 35-year-old from Winona, Minnesota, was sentenced this week by an Atlanta court to four years and two months in prison for selling stolen information on a dark web marketplace called AlphaBay.

Glende was initially charged with bank fraud, access device fraud and aggravated identity theft, but in September he pleaded guilty to the last two charges.

AlphaBay is a highly popular dark web marketplace used to buy and sell weapons, counterfeit products, drugs and chemicals, and items that can be used to commit fraud. Bitcoin is typically used for transactions on the website, but other digital currencies are also accepted. The value of Monero, for example, increased significantly in September after it was integrated by AlphaBay.

According to U.S. authorities, between November 2015 and May 2016, Glende offered to sell stolen information, including bank account data in AlphaBay’s “Fraud” section. IcyEagle advertised SunTrust Bank accounts with various balances, including accounts with between $30,000 and $150,000, which he sold for $66.99. SunTrust accounts with balances of $100-$500 were sold for $10.

An undercover FBI agent who purchased SuntTrust account information from Glende confirmed that the usernames, passwords, email and physical addresses, phone numbers, and bank account details were valid.

A search of the cybercriminal’s computer after his arrest revealed that he possessed hundreds of credit card and bank account numbers, social security numbers, banking credentials, and logins for online accounts.

While authorities specifically named SunTrust accounts, cyber risk intelligence firm SurfWatch Labs said IcyEagle also sold Amazon gift cards and logins for various types of online services, including email, dating sites, and reward programs. SurfWatch reported that the fraudster also sold SunTrust accounts with balances ranging between $250,000 and $500,000 for $230.

In March, the Winona Post reported that local police had arrested Glende after postal inspectors found prescription pills in his packages.

Advertisement. Scroll to continue reading.

“It’s unclear how — or even if — those two events are linked, but shortly after that drug-related arrest the FBI appears to have begun targeting IcyEagle’s postings on AlphaBay,” SurfWatch said. “We can speculate that after U.S. Postal Inspectors tied Glende to selling prescription drugs, the search warrant and subsequent investigation may have revealed evidence leading law enforcement to AlphaBay and IcyEagle — or vice versa.”

Related: Behind the Buzz – What Intel Can You Gather from Dark Web Markets?

Related: Top Reasons to Pay Attention to the Dark Web

Related: Hundreds Access Fake Bank Account Data “Leaked” to Dark Web

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Fraud & Identity Theft

Famed hacker Kevin Mitnick has died after a battle with pancreatic cancer.  At the time of his death, he was Chief Hacking Officer at...

Fraud & Identity Theft

A team of researchers has demonstrated a new attack method that affects iPhone owners who use Apple Pay and Visa payment cards. The vulnerabilities...

Cybercrime

Deepfakes, left unchecked, are set to become the cybercriminals’ next big weapon

Cybercrime

A threat actor tracked as ‘Scattered Spider’ is targeting telecommunications and business process outsourcing (BPO) companies in an effort to gain access to mobile...

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...

Cybercrime

While there are likely many different approaches, here are a few points that are important for enterprises to consider when evaluating bot solutions.