Security & Fraud

Russian Hacker Behind Citadel Malware Faces 10 Years In Prison

A Russian hacker behind the Citadel malware toolkit pleaded guilty to computer fraud and faces a sentence of 10 years in a U.S. prison.

According to a report, Mark Vartanyan, who went by the online handle “Kolypto” and was behind the malware toolkit that resulted in more than $500 million being stolen from bank accounts, was extradited from Norway this past December and pleaded guilty earlier in the week in an Atlanta court. The Russian is slated to be sentenced in June, noted the report.

Citing U.S. authorities, the report noted that Citadel first made the rounds for sale on Russian-language forums in 2011. Hackers reportedly purchased the malware and targeted computer networks of financial and government institutions, including in the U.S., with the malware. Since it first was up for sale, Citadel has been responsible for infecting around 11 million computers around the globe and is to blame for more than $500 million in stolen money.

The U.S. Department of Justice said, according to the report, that for longer than two years starting in 2012 the defendant took part in the “development, improvement, maintenance and distribution” of Citadel. He is charged with uploading electronic files that consisted of Citadel malware, components, updates and patches, and customer information, noted the report. The report reported Vartanyan is the second person to be charged as the result of an investigation into Citadel malware. Two years ago Dimitry Belorossov was sentenced to four years, six months, in prison after pleading guilty to charges he committed computer fraud by distributing and installing the malware on unsuspecting victims’ computers.

In a separate action, a Lithuanian man was arrested over a phishing scheme that resulted in internet companies wiring more than $100 million to bank accounts he controlled. According to U.S. law enforcement officials,Evaldas Rimasauskas posed as an Asian-based computer hardware manufacturer to trick a “multinational technology company and a multinational online social media company” to send him money.


Latest Insights: 

With an estimated 64 million connected cars on the road by year’s end, QSRs are scrambling to win consumer drive-time dollars via in-dash ordering capabilities, while automakers like Tesla are developing new retail-centric charging stations. The PYMNTS Commerce Connected Playbook explores how the connected car is putting $230 billion worth of connected car spend into overdrive.

Click to comment


To Top