Zephyrnet Logo

SANCTIONS ALERT: More Russian Crypto-Related Designations

Date:

SANCTIONS UPDATE: On September 16, 2020, two Russian nationals were added to OFAC’s SDN List for their involvement in a sophisticated phishing campaign that targeted customers of two US-based and one foreign-based virtual asset service providers (VASPs) in 2017 and 2018 . This attack resulted in combined losses of at least $16.8 million. The designation includes Bitcoin, Bitcoin Gold, Litecoin, Ethereum, Ethereum Classic, DASH and ZCash virtual currency addresses and one Monero payment ID. This is the first time OFAC has listed Monero (XMR) in their designations.

To perpetrate their scheme, one of the fraudsters—Potekhin—spoofed the websites of numerous legitimate virtual currency exchanges to collect users’ login credentials and gain access to their real accounts. According to OFAC, the duo employed a variety of methods to move the legitimate funds out of users accounts, such as: creating exchange accounts with fake or stolen IDs; swapping to different virtual currencies, such as Monero; and moving the virtual currency through multiple intermediary addresses.

Once they had access to the funds, the second fraudster— Karasavidi—laundered all the proceeds of the attacks into an account under his name. Despite attempting to obfuscate the true nature of the funds by layering deposits through multiple accounts and multiple virtual currency blockchains, blockchain analytics were still able to trace the stolen funds to his account. The US Secret Service seized millions of dollars in virtual currency and US dollars from Karasavidi’s accounts in a forfeiture action.

SDN Designations:

KARASAVIDI, Dmitrii (Cyrillic: КАРАСАВИДИ, Дмитрий) (a.k.a. KARASAVIDI, Dmitriy), Moscow, Russia; DOB 09 Jul 1985; Email Address [email protected]; alt. Email Address [email protected]; Gender Male; Passport 75 5276391 (Russia) expires 29 Jun 2027 (individual) [CYBER2].

Digital Currency Address – XBT 1Q6saNmqKkyFB9mFR68Ck8F7Dp7dTopF2W;

alt. Digital Currency Address – XBT 1DDA93oZPn7wte2eR1ABwcFoxUFxkKMwCf;

Digital Currency Address – ETH 0xd882cfc20f52f2599d84b8e8d58c7fb62cfe344b;

Digital Currency Address – XMR 5be5543ff73456ab9f2d207887e2af87322c651ea1a873c5b25b7ffae456c320;

Digital Currency Address – LTC LNwgtMxcKUQ51dw7bQL1yPQjBVZh6QEqsd;

Digital Currency Address – ZEC t1g7wowvQ8gn2v8jrU1biyJ26sieNqNsBJy;

Digital Currency Address – DASH XnPFsRWTaSgiVauosEwQ6dEitGYXgwznz2;

Digital Currency Address – BTG GPwg61XoHqQPNmAucFACuQ5H9sGCDv9TpS;

Digital Currency Address – ETC 0xd882cfc20f52f2599d84b8e8d58c7fb62cfe344b;

POTEKHIN, Danil (Cyrillic: ПОТЕХИН, Данил) (a.k.a. “cronuswar”; a.k.a. “SERGEY, Kireev Valerievich”), Voronezh, Russia; DOB 14 Sep 1995; alt. DOB 14 Sep 1990; alt. DOB 08 Aug 1990; Email Address [email protected]; Gender Male; (individual) [CYBER2].

Digital Currency Address – XBT 1Q9UAQbcDezmyouFrzt94t4dSMxgsUfW1X;

alt. Digital Currency Address – XBT 1Kys8fqDen8NGFUJ6AFcXfFW5qquuTH4eh;

Digital Currency Address – ETH 0x7F367cC41522cE07553e823bf3be79A889DEbe1B

https://home.treasury.gov/policy-issues/financial-sanctions/recent-actions/20200916

Source: https://ciphertrace.com/sanctions-alert-more-russian-crypto-related-designations/

spot_img

Latest Intelligence

spot_img