cyber Cyber Attack

United States of America

Oct 4, 2023 1 min read
United States of America

The case number for Alexander Pakhtusov's accusation is 19-cr-310 in the United States District Court for the District of Columbia. Under the alias "Mrtikov," Mr. Pakhtusov sold goods on Slilpp and Paysell (now named Blackpass).

Over 17 million economically valuable accounts of individuals housed at various firms and banks were listed for sale as part of his involvement, which lasted from at least April 2016 to September 2019.

In reality, he sold almost 14,000 different sets of login information. The individuals who bought those login credentials utilised them to steal money from victim accounts.

You can get up-to-date information on this case on the website at https://www.justice.gov/information-victims-large-cases due to the significant number of victims in this matter.

Source: https://www.justice.gov/usao-dc/united-states-v-alexander-pakhtusov

TPRM report: https://scoringcyber.rankiteo.com/company/united-states-of-america

"id": "uni982923",
"linkid": "united-states-of-america",
"type": "Data Leak",
"date": "09/2019",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 'Over 17 million',
                        'industry': ['Financial Services'],
                        'type': ['Firms', 'Banks']}],
 'attack_vector': 'Credential Theft',
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': 'Over 17 million',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Login Credentials']},
 'description': "Alexander Pakhtusov, under the alias 'Mrtikov,' sold stolen "
                'login credentials on Slilpp and Paysell (now named '
                'Blackpass). He sold approximately 14,000 sets of login '
                'information, which were used to steal money from victim '
                'accounts.',
 'impact': {'data_compromised': ['Login Credentials'],
            'identity_theft_risk': 'High',
            'payment_information_risk': 'High'},
 'initial_access_broker': {'data_sold_on_dark_web': 'Yes',
                           'entry_point': 'Credential Theft'},
 'investigation_status': 'Ongoing',
 'motivation': 'Financial Gain',
 'references': [{'source': 'United States Department of Justice',
                 'url': 'https://www.justice.gov/information-victims-large-cases'}],
 'regulatory_compliance': {'legal_actions': 'Criminal Charges'},
 'response': {'law_enforcement_notified': 'Yes'},
 'threat_actor': "Alexander Pakhtusov (alias 'Mrtikov')",
 'title': 'Alexander Pakhtusov Cyber Incident',
 'type': 'Data Breach'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.