Three members of the cybercriminal organization behind the infamous GozNym malware have been sentenced to prison.
GozNym emerged in early 2016 as a hybrid Trojan, being a combination between the Nymaim dropper and the Gozi financial malware. The threat targeted North America and Europe, but was sinkholed in September 2016.
The GozNym cybercrime group was dismantled in May 2019 as part of an international law enforcement operation that involved the United States, Georgia, Ukraine, Moldova, Germany, Bulgaria, Europol and Eurojust.
Authorities in the United States sentenced Krasimir Nikolov, 47, of Varna, Bulgaria, to time served after having served more than 39 months in prison. He was convicted for criminal conspiracy, computer fraud, and bank fraud for his role in the GozNym cybercrime network.
Nikolov was arrested in September 2016 in Bulgaria and extradited in December 2016. He served primarily as a “casher” or “account takeover specialist,” using stolen online banking credentials to access victims’ accounts and transfer funds to bank accounts controlled by fellow conspirators.
Nikolov was indicted in May 2019 in The Hague, Netherlands, along with 10 additional members of the GozNym criminal network.
The indictment also charged Alexander Konovolov, aka “NoNe” and “none_1,” of Tbilisi, Georgia, and Marat Kazandjian, aka “phant0m,” of Kazakhstan and Tbilisi, Georgia, as the primary organizer and leader of the GozNym network, and primary assistant and technical administrator, respectively.
Konovolov and Kazandjian were arrested and prosecuted in Georgia and were convicted to 7 and 5 years in prison, respectively. Kazandjian will only serve one year in prison and will be on parole for 4 years.
“In announcing the prosecution of the GozNym international cybercrime syndicate with our law enforcement partners at Europol in May, I stated that borderless cybercrime necessitates a borderless response. This new paradigm involves unprecedented levels of cooperation with willing and trusted law enforcement partners around the world who share our goals of searching, arresting and prosecuting cyber criminals no matter where they might be,” United States Attorney Scott W. Brady commented.