15 August 2024

Russian man gets 40 months in prison for selling nearly 300,000 login credentials


Russian man gets 40 months in prison for selling nearly 300,000 login credentials

Georgy Kavzharadze, a 27-year-old Russian national from Moscow, has been sentenced to 40 months in prison for his involvement in selling stolen financial information on the criminal internet marketplace Slilpp. Operating under the alias "TeRorPP," Kavzharadze was a prolific vendor who listed over 626,100 stolen login credentials for sale and successfully sold around 297,300 of them. These credentials were later linked to approximately $1.2 million in fraudulent transactions.

Kavzharadze's criminal activities took place between July 2016 and May 2021. By the time of his arrest, his account on Slilpp still had nearly 240,495 login credentials for sale, primarily targeting online payment and bank accounts in several US states. He accepted Bitcoin as payment and had withdrawn over $200,000 in profits.

The FBI, in collaboration with international law enforcement, dismantled Slilpp in June 2021 by seizing its infrastructure and domain names. This operation provided crucial evidence, including detailed transaction records and subscriber information. Kavzharadze was charged in August 2021 and was later extradited to the United States, where he has remained in detention since his initial court appearance in May 2022.

In addition to his prison sentence, Kavzharadze has been ordered to pay $1,233,521.47 in restitution. He pleaded guilty in February 2024 to conspiracy to commit bank fraud and wire fraud.


Back to the list

Latest Posts

What is Vulnerability Management? A Beginner's Guide

What is Vulnerability Management? A Beginner's Guide

In this article will try to cover basics of vulnerability management process and why it is important to every company.
11 September 2024
Cyber Security Week in Review: September 6, 2024

Cyber Security Week in Review: September 6, 2024

In brief: the US charges Russian GRU hackers for attacks on Ukraine, Apache, Cisco, Zyxel patch high-risk flaws, Google fixes Android zero-day, and more.
6 September 2024
Threat actors using MacroPack Red Team framework to deploy Brute Ratel, Havoc and PhantomCore

Threat actors using MacroPack Red Team framework to deploy Brute Ratel, Havoc and PhantomCore

Some of the documents appeared to be part of legitimate Red Team exercises, while other were intended for malicious purposes.
5 September 2024