Suspected Russian cybercriminal faces fraud charges in US

The U.S. Department of Justice announced wire and computer fraud charges against Russian initial access broker Evgeniy Doroshenko, also known as Flanker and FlankerWWH, for allegedly participating in the sale of access to the networks of US companies at a Russian cybercrime forum between February 2019 and May 2024. BleepingComputer reports.

In addition to mentioning FlankerWWH's alleged sale of access to a New Jersey-based company in January, the indictment also alleges another operation by Doroshenko that involved the theft of data worth more than $5,000.

BleepingComputer discovered that access to the New Jersey company was sold for a starting price of $3,000 or a buy-it-now price of $6,000, while further analysis of the malicious activity revealed that FlankerWWH had asked for help decoding NTLM hashes, omitting passwords from Excel spreadsheets. , and communicate with a keylogger developer after conducting network breaches via brute force attacks against Remote Desktop Protocol services.

Doroshenko could be jailed for up to 20 years for wire fraud and five years for computer fraud, as well as a $250,000 fine for each offense, if arrested and convicted on those charges.