US authorities have charged 31-year-old Russian Yevgeny Doroshenko with fraud using computers and electronic means of communication. Law enforcement officers believe that from February 2019 to May 2024, he traded access to corporate networks of various organizations.
Doroshenko, also known by the nicknames FlankerWWH and Flanker, is accused of obtaining unauthorized access to corporate networks and then selling the obtained accesses on Russian-language hack forums.
"From February 2019 to May 2024, Doroshenko used a scheme in which he obtained illegal access to victims' computer systems and sold this access to others for profit through a Russian-language forum for cybercriminals located on the darknet, " the US Department of Justice reports.
The indictment mentions a specific case that occurred in January 2024, when FlankerWWH tried to sell network access to an unnamed New Jersey company. Journalists of the Bleeping Computer publication write that they found this ad: then the attacker tried to sell access to the company's network, setting a starting price of $ 3,000 in increments of $ 500, as well as a blitz price of $ 6,000.
Apparently, most often FlankerWWH preferred to hack companies ' networks using RDP brute force. In addition, the same user asked for help in hacking NTLM hashes, which were probably obtained after hacking some network.
In addition to all of the above, the indictment mentions a case where the defendant stole information from one of the hacked systems, and the value of the data exceeded $ 5,000.
The charge of fraud involving electronic communications carries a maximum penalty of 20 years in prison and a fine of $ 250,000, while the charge of computer fraud carries up to 5 years in prison and a similar fine.
At the moment, the suspect is in Russia, that is, the charges were brought in absentia.
• Source: https://www.justice.gov/usao-nj/pr/...fraud-selling-access-victim-computer-networks
• Source: https://www.justice.gov/usao-nj/media/1352616/dl?inline
Doroshenko, also known by the nicknames FlankerWWH and Flanker, is accused of obtaining unauthorized access to corporate networks and then selling the obtained accesses on Russian-language hack forums.
"From February 2019 to May 2024, Doroshenko used a scheme in which he obtained illegal access to victims' computer systems and sold this access to others for profit through a Russian-language forum for cybercriminals located on the darknet, " the US Department of Justice reports.
The indictment mentions a specific case that occurred in January 2024, when FlankerWWH tried to sell network access to an unnamed New Jersey company. Journalists of the Bleeping Computer publication write that they found this ad: then the attacker tried to sell access to the company's network, setting a starting price of $ 3,000 in increments of $ 500, as well as a blitz price of $ 6,000.
Apparently, most often FlankerWWH preferred to hack companies ' networks using RDP brute force. In addition, the same user asked for help in hacking NTLM hashes, which were probably obtained after hacking some network.
In addition to all of the above, the indictment mentions a case where the defendant stole information from one of the hacked systems, and the value of the data exceeded $ 5,000.
The charge of fraud involving electronic communications carries a maximum penalty of 20 years in prison and a fine of $ 250,000, while the charge of computer fraud carries up to 5 years in prison and a similar fine.
At the moment, the suspect is in Russia, that is, the charges were brought in absentia.
• Source: https://www.justice.gov/usao-nj/pr/...fraud-selling-access-victim-computer-networks
• Source: https://www.justice.gov/usao-nj/media/1352616/dl?inline
