Feds: New Castle paving company targeted by international cyberc - WFMJ.com News weather sports for Youngstown-Warren Ohio

Feds: New Castle paving company targeted by international cybercriminals

Posted: Updated:
PITTSBURGH -

A New Castle paving company is just one victim of what federal investigators say was a complex transnational organized cybercrime network that tried to steal $100 million from unsuspecting victims.

A federal indictment has been unsealed in Pittsburgh naming ten people as part of plot using what is being called “GozNym” malware to infect tens of thousands of victim computers worldwide, primarily in the United States and Europe.

The indictment, which identifies the New Castle paving company only as “victim one”, received a phishing email designed to look like a legitimate email from Bank of America.

When an employee of the paving business clicked on a file in the email, it infected the company's computer with the malware, according to investigators.

The indictment says Alexander Konovolov, of the Republic of Georgia and Krasimir Nikolov, of Bulgaria, gained access to the paving company's banking account credentials and then attempted to electronically transfer more than $350,000 from those accounts.

The conspirators would then launder any funds collected, according to the indictment.

Other victims from around the country include law offices, a church, a contractor, casino, medical equipment distributor, and even a stud farm.

The defendants reside in Russia, Georgia, Ukraine, Moldova and Bulgaria.

According to the indictment, Konovolov was the primary organizer and leader of the GozNym network who controlled more than 41,000 victim computers infected with GozNym malware.

Konovolov assembled the team of cybercriminals charged in the Indictment, in part by recruiting them through the underground online criminal forums.

Marat Kazandjian, also of Georgia, was allegedly Konovolov’s primary assistant and technical administrator. Konovolov and Kazandjian are being prosecuted in Georgia for their roles in the criminal network.

Krasimir Nikolov was searched and arrested by Bulgarian authorities and extradited to the United States in December 2016 to face prosecution.

Nikolov’s primary role in the conspiracy was that of a “casher” or “account takeover specialist” who used victims’ stolen online banking credentials captured by GozNym malware to access victims’ online bank accounts and attempt to steal victims’ money through electronic funds transfers into bank accounts controlled by fellow conspirators.

According to the indictment, the suspects advertised their specialized technical skills and services on underground, Russian-language, online criminal forums.

The GozNym network was formed when the defendants were recruited from the online forums and came together to use their specialized technical skills and services to form the conspiracy.

Gennady Kapkanov, age 36, of Poltava, Ukraine, was an administrator of a bulletproof hosting service known by law enforcement and computer security researchers as the “Avalanche” network. This network provided services to more than 200 cybercriminals, and it hosted more than 20 different malware campaigns, including GozNym.

Kapkanov’s apartment in Poltava, Ukraine was searched in November 2016 during a German-led operation to dismantle the network’s servers and other infrastructure.

Kapkanov was arrested for shooting an assault rifle through the door of his apartment at Ukrainian law enforcement officers conducting the search.

Kapkanov is faces prosecution in Ukraine for his role in providing bulletproof hosting services to the GozNym criminal network.

Alexander Van Hoof, 45, of Nikolaev, Ukraine, was a “cash-out” or “drop master” who provided fellow members of the conspiracy with access to bank accounts he controlled that were designated to receive stolen funds from GozNym victims’ online bank accounts.

Eduard Malanici, 32, of Balti, Moldova, provided crypting services to cybercriminals. Malanici crypted GozNym malware to enable the malware to avoid detection by anti-virus tools and protective software on victims’ computers. Malanici, along with two associates, is being prosecuted in Moldova.

Five Russian nationals charged in the indictment who remain fugitives.

The indictment may be seen here

  • Hot ClicksHot ClicksMore>>

  • Joaquin 'El Chapo' Guzman sentenced to life in prison

    Joaquin 'El Chapo' Guzman sentenced to life in prison

    Thursday, July 18 2019 2:31 AM EDT2019-07-18 06:31:32 GMT
    (AP Photo/Eduardo Verdugo, File). FILE - In this Feb. 22, 2014, file photo, Joaquin "El Chapo" Guzman is escorted to a helicopter in handcuffs by Mexican navy marines at a navy hanger in Mexico City. Guzman, who was convicted in February 2019 on multip...(AP Photo/Eduardo Verdugo, File). FILE - In this Feb. 22, 2014, file photo, Joaquin "El Chapo" Guzman is escorted to a helicopter in handcuffs by Mexican navy marines at a navy hanger in Mexico City. Guzman, who was convicted in February 2019 on multip...
    (AP Photo/Eduardo Verdugo, File). FILE - In this Feb. 22, 2014, file photo, Joaquin "El Chapo" Guzman is escorted to a helicopter in handcuffs by Mexican navy marines at a navy hanger in Mexico City. Guzman, who was convicted in February 2019 on multip...(AP Photo/Eduardo Verdugo, File). FILE - In this Feb. 22, 2014, file photo, Joaquin "El Chapo" Guzman is escorted to a helicopter in handcuffs by Mexican navy marines at a navy hanger in Mexico City. Guzman, who was convicted in February 2019 on multip...
    Whether the notorious Mexican drug lord known as "El Chapo" will go quietly is the biggest question at his sentencing in New York City.More >>
    Whether the notorious Mexican drug lord known as "El Chapo" will go quietly is the biggest question at his sentencing in New York City.More >>
  • Florida expert captures elusive alligator at Chicago lagoon

    Florida expert captures elusive alligator at Chicago lagoon

    Wednesday, July 17 2019 10:41 PM EDT2019-07-18 02:41:31 GMT
    (Armando L. Sanchez/Chicago Tribune via AP). An alligator floats in the Humboldt Park Lagoon, Tuesday, July 9, 2019, in Chicago. Officials couldn't say how the creature got there, but traps are being placed around the lagoon in hopes the animal will sw...(Armando L. Sanchez/Chicago Tribune via AP). An alligator floats in the Humboldt Park Lagoon, Tuesday, July 9, 2019, in Chicago. Officials couldn't say how the creature got there, but traps are being placed around the lagoon in hopes the animal will sw...
    (Armando L. Sanchez/Chicago Tribune via AP). An alligator floats in the Humboldt Park Lagoon, Tuesday, July 9, 2019, in Chicago. Officials couldn't say how the creature got there, but traps are being placed around the lagoon in hopes the animal will sw...(Armando L. Sanchez/Chicago Tribune via AP). An alligator floats in the Humboldt Park Lagoon, Tuesday, July 9, 2019, in Chicago. Officials couldn't say how the creature got there, but traps are being placed around the lagoon in hopes the animal will sw...
    Police say an expert from Florida has captured an elusive alligator in a Chicago public lagoon.More >>
    Police say an expert from Florida has captured an elusive alligator in a Chicago public lagoon.More >>
  • Planned Parenthood to defy Trump abortion referral rule

    Planned Parenthood to defy Trump abortion referral rule

    Wednesday, July 17 2019 8:00 PM EDT2019-07-18 00:00:02 GMT
    (Robert Cohen/St. Louis Post-Dispatch via AP). FILE - In this June 28, 2019 file photo, Ashlyn Myers of the Coalition for Life St. Louis, waves to a Planned Parenthood staff member in St. Louis, Mo. The Trump administration says its new regulation barr...(Robert Cohen/St. Louis Post-Dispatch via AP). FILE - In this June 28, 2019 file photo, Ashlyn Myers of the Coalition for Life St. Louis, waves to a Planned Parenthood staff member in St. Louis, Mo. The Trump administration says its new regulation barr...
    (Robert Cohen/St. Louis Post-Dispatch via AP). FILE - In this June 28, 2019 file photo, Ashlyn Myers of the Coalition for Life St. Louis, waves to a Planned Parenthood staff member in St. Louis, Mo. The Trump administration says its new regulation barr...(Robert Cohen/St. Louis Post-Dispatch via AP). FILE - In this June 28, 2019 file photo, Ashlyn Myers of the Coalition for Life St. Louis, waves to a Planned Parenthood staff member in St. Louis, Mo. The Trump administration says its new regulation barr...
    Trump administration says family planning clinics that receive federal money are no longer allowed to refer women to abortion providers.More >>
    Trump administration says family planning clinics that receive federal money are no longer allowed to refer women to abortion providers.More >>
  • More NewsMore>>

  • Ohio budget plan only addresses new state school takeovers

    Ohio budget plan only addresses new state school takeovers

    Thursday, July 18 2019 12:15 AM EDT2019-07-18 04:15:09 GMT

    Ohio has a budget plan but it still has to be approved by Governor Mike DeWine and he could line-item veto specific proposals. On Wednesday, both the House and Senate approved the two year $69 billion dollar budget plan.  Part of that budget plan, addresses the controversial law that put a CEO in charge of Youngstown City Schools.

    More >>

    Ohio has a budget plan but it still has to be approved by Governor Mike DeWine and he could line-item veto specific proposals. On Wednesday, both the House and Senate approved the two year $69 billion dollar budget plan.  Part of that budget plan, addresses the controversial law that put a CEO in charge of Youngstown City Schools.

    More >>
  • Weathersfield Township man indicted after police say they find pot growing operation

    Weathersfield Township man indicted after police say they find pot growing operation

    Wednesday, July 17 2019 11:58 PM EDT2019-07-18 03:58:52 GMT
    Daniel BabcockDaniel Babcock
    Daniel BabcockDaniel Babcock
    A Weathersfield man has been indicted by a Trumbull County Grand Jury after he is accused of a marijuana growing operation in his home.  50-year-old Daniel Babcock has been indicted on one count of cultivation of marijuana, one count of trafficking in marijuana, one count of possession of marijuana, two counts of having weapons while under disability, one count of illegal use or possession of drug paraphernalia and one count of intimidation of an attorney, victim, or witness in ...More >>
    A Weathersfield man has been indicted by a Trumbull County Grand Jury after he is accused of a marijuana growing operation in his home.  50-year-old Daniel Babcock has been indicted on one count of cultivation of marijuana, one count of trafficking in marijuana, one count of possession of marijuana, two counts of having weapons while under disability, one count of illegal use or possession of drug paraphernalia and one count of intimidation of an attorney, victim, or witness in ...More >>
  • Suspect in police chase found dead in the Shenango River

    Suspect in police chase found dead in the Shenango River

    Wednesday, July 17 2019 11:33 PM EDT2019-07-18 03:33:47 GMT

    A teenager's body was pulled from the Shenango River Wednesday afternoon in Mercer County.  Authorities say the teen was one of three suspects involved in a police chase earlier this week and it's believed he jumped in the river to get away - although family members say he couldn't swim. 

    More >>

    A teenager's body was pulled from the Shenango River Wednesday afternoon in Mercer County.  Authorities say the teen was one of three suspects involved in a police chase earlier this week and it's believed he jumped in the river to get away - although family members say he couldn't swim. 

    More >>
Powered by Frankly
All content © Copyright 2000 - 2019 WFMJ. All Rights Reserved. For more information on this site, please read our Privacy Policy and Terms