Security Experts:

Connect with us

Hi, what are you looking for?


Fraud & Identity Theft

Defendants in Newswire Hacking Case Agree to Pay $30 Million

The Securities and Exchange Commission (SEC) last month announced bringing charges against tens of individuals and companies allegedly involved in an illegal trading scheme. Two of the defendants have agreed to pay $30 million to settle the charges.

The Securities and Exchange Commission (SEC) last month announced bringing charges against tens of individuals and companies allegedly involved in an illegal trading scheme. Two of the defendants have agreed to pay $30 million to settle the charges.

The SEC revealed in August that a cybercriminal group led by Ukrainian nationals Ivan Turchynov and Oleksandr Ieremenko hacked into the systems of newswire services Marketwired, PR Newswire and Business Wire in an effort to steal unreleased corporate earnings announcements that would be highly valuable for making profitable financial trades. The stolen data was transmitted via a website to traders in the U.S., Russia, Ukraine, Malta, France, and Cyprus.

The scheme is believed to have generated more than $100 million in illegal profits based on roughly 150,000 press releases stolen between 2010 and 2015. The hackers reportedly gained access to the valuable information after stealing the login credentials of newswire employees and planting malware on the targeted systems.

In one example provided by SEC, the hackers and traders managed to make over half a million dollars after getting their hands on a negative earnings report 36 minutes before it was released to the public.

SEC announced charging 34 defendants with violating federal antifraud laws and related SEC antifraud rules. Two of the charged traders, Ukrainian-based Jaspen Capital Partners Limited and CEO Andriy Supranonok, have agreed to return $30 million of the profit that was allegedly obtained illegally.

Jaspen and Supranonok haven’t denied or admitted the allegations that they made roughly $25 million buying and selling contracts-for-differences (CFDs) based on illegally obtained press releases. It’s worth noting that earnings information obtained before its public release can be highly valuable for CFD transactions, in which traders place bets on the direction of a stock’s price movement.

“Barely a month after we froze tens of millions of dollars in illegal profits from the defendants’ trading on illegal inside information obtained from hacked news releases, we obtained a settlement with foreign traders that deprives them of their wrongful gains,” commented Andrew J. Ceresney, Director of the SEC’s Enforcement Division. “Today’s settlement demonstrates that even those beyond our borders who trade on stolen nonpublic information and use complex instruments in an attempt to avoid detection will ultimately be caught.”

In addition to the SEC’s civil case, the United States Department of Justice announced charges against nine people who allegedly made $30 million using information stolen from newswires. Five of them, residing in the US states of Pennsylvania, New York and Georgia, have been arrested. International arrest warrants have been issued for the other defendants, who are located in Ukraine.

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Expert Insights

Related Content


A digital ad fraud scheme dubbed "VastFlux" spoofed over 1,700 apps and peaked at 12 billion ad requests per day before being shut down.

Application Security

Software maker Adobe on Tuesday released security patches for 29 documented vulnerabilities across multiple enterprise-facing products and warned that hackers could exploit these bugs...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...

Application Security

Google’s Threat Analysis Group (TAG) has shared technical details on an Internet Explorer zero-day vulnerability exploited in attacks by North Korean hacking group APT37.

Application Security

Big-game malware hunters at Volexity are shining the spotlight on a sophisticated Chinese APT caught recently exploiting a Sophos firewall zero-day to plant backdoors...

Application Security

Virtualization technology giant Citrix on Tuesday scrambled out an emergency patch to cover a zero-day flaw in its networking product line and warned that...