A New York man was charged with stealing credit card data via SQL Injection attacks

The US DoJ announced that a New York City man was charged with hacking, credit card trafficking, and money laundering conspiracies.

New York City man Vitalii Antonenko (28) was charged with hacking, credit card trafficking, and money laundering conspiracies, states the US DoJ.

The man was arrested in March 2019 and detained after his arrival from Ukraine. The man was carrying computers and other digital media holding containing hundreds of thousands of stolen payment card numbers.

“Vitalii Antonenko, 28, was indicted on one count of conspiracy to gain unauthorized access to computer networks and to traffic in unauthorized access devices, and one count of money laundering conspiracy.” reads the press release published by US DoJ. “In March 2019, Antonenko was arrested and detained on money laundering charges at New York’s John F. Kennedy International Airport after he arrived there from Ukraine carrying computers and other digital media that held hundreds of thousands of stolen payment card numbers.”

The man nd co-conspirators obtained the credit card data by hacking into vulnerable computer networks.

The hackers launched SQL injection attacks to access vulnerable networks and steal Payment Card Data and other PII.

Crooks were able to steal card account numbers, expiration dates, and card verification values, along with other personally identifiable information (PII), then they were offering them for sale on cybercrime marketplaces.

“They used a hacking technique known as a “SQL injection attack” to access those networks without authorization, extracted Payment Card Data and other PII, and transferred it for sale on online criminal marketplaces.” continues the DoJ. “Once a co-conspirator sold the data, Antonenko and others used Bitcoin as well as traditional bank and cash transactions to launder the proceeds in order to disguise their nature, location, source, ownership, and control.”

The charges related to unauthorized access carry a sentence of up to five years in prison, three years of supervised release, a $250,000 fine, restitution and forfeiture.

Antonenko faces up to 20 years in prison and a $500,000 fine for the money laundering conspiracy charges.

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – Card Data, hacking)

[adrotate banner=”5″]

[adrotate banner=”13″]