Feds: Ukrainian sentenced for servers sold on the dark web



The Marketplace, a dark website, has listed more than 700,000 compromised servers for sale, including at least 150,000 in the United States and 8,000 in Florida, authorities said.


A Ukrainian national is accused of taking part in a scheme to sell the social security numbers of hundreds of thousands of Americans, as well as the usernames and passwords stolen from computer servers for hospitals, the infrastructure of the federal government, universities and more across the country.

From now on, the man risks prison.

Glib Oleksandr Ivanov-Tolpintsev, 28, of Chernivtsi, Ukraine, was sentenced to federal prison for conspiracy to trafficking of unauthorized access devices and computer passwordsaccording to a press release from the U.S. Attorney’s Office for the Central District of Florida.

Adrian E. Burden, Ivanov-Tolpintsev’s defense attorney, did not immediately respond to a request for comment from McClatchy News on May 13.

‘The marketplace’

Beginning in 2014 and continuing through 2019, the “Marketplace”, a dark website, was used to try to sell the login credentials to compromised computer software, along with personally identifiable information of hundreds of thousands of US residents. , court documents obtained by McClatchy News Show.

Specifically, the site promoted for sale the computer server usernames and passwords as well as the date of birth and social security number of at least 333,000 US residents, prosecutors said.

The “Marketplace” has listed more than 700,000 compromised servers, including at least 150,000 in the United States and 8,000 in Florida, according to court documents.

Once sold, the servers were then used to commit illegal activities such as ransomware attacks and tax evasion, according to court documents.

Prosecutors said the “deal” targeted “local, state and federal government infrastructure, hospitals, 911 and emergency services, call centers, major metropolitan transit authorities, accounting firms and lawyers, pension funds and universities” around the world.

Ivanov-Tolpintsev became a “seller” on the “Marketplace” in January 2017 after the Ukrainian national Told Site administrators say he could steal more than 2,000 login credentials for computers every week, according to court documents.

In one month in 2017, Ivanov-Tolpintsev listed around 6,704 servers for sale on the site under the username “Mars”, according to court documents.

Prosecutors said buyers paid at least $82,648 for the servers Ivanov-Tolpintsev put up for sale.

The website was shut down after federal authorities seized the domain in January 2019.

While the exact amount of fraud committed by the “Marketplace” is unknown, prosecutors say buyers used servers purchased from the site to “perpetrate more than $100 million in identity theft.”

The man was arrested in October 2020 in Korczowa, Poland, and extradited to the United States

On February 22, Ivanov-Tolpintsev pleaded guilty for his role in the scheme.

In a memorandum filed in support of his client, Burden said Ivanov-Tolpintsev listed 6,704 servers for sale on the site, which is less than 1% of the total servers listed on the “Marketplace.”

Burden said the Ukrainian national had no criminal history prior to this case and asked for a prison sentence of between 18 and 24 months.

On May 12, Ivanov-Tolpintsev was sentenced to four years in federal prison, according to the statement. The man was also ordered to repay $82,648, representing the proceeds he is accused of having made from the scheme.

Cassandre Coyer is a McClatchy national real-time reporter covering the Southeast while based in Washington DC. She is an alumnus of Emerson College in Boston and joined McClatchy in 2022. Previously she has written for The Christian Science Monitor, RVA Mag, The Untitled Magazine and Suite.


Comments are closed.