DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Manhattan U.S. Attorney Charges Belarusian Creator of International Identity Theft Website

Posted on April 19, 2010 by Dissent

Preet Bharara, the United States Attorney for the Southern District of New York, and Joseph M. Demarest, Jr., the Assistant Director-in-Charge of the New York Office of the FBI, announced today the unsealing of an indictment against Dmitry M. Naskovets—creator and operator of CallService.biz, an online business that assisted over 2,000 identity thieves in over 5,000 instances of fraud—on charges of conspiracy to commit wire fraud, conspiracy to commit credit card fraud, and aggravated identity theft. At the request of the United States, authorities of the Czech Republic on Thursday, April 15, 2010, provisionally arrested Naskovets pending his extradition to the United States.

According to the indictment unsealed today in Manhattan federal court:

In June 2007, Naskovets, a Belarusian national, and co-conspirator Sergey Semashko, also a Belarusian national who is charged by the Belarusians, created CallService.biz, an online business intended to assist identity thieves in exploiting stolen financial information, such as credit card and debit card numbers. The website was, among other things, designed to counteract security measures put in place by financial institutions. These security measures, for example, require persons seeking to make transfers or withdrawals from accounts, or to conduct other financial transactions to verify by telephone certain information associated with the account. Businesses that accept online or telephone purchases by credit card have similar security measures. Representatives at such financial institutions and businesses are trained to make sure that persons purporting over the telephone to be account holders appear to fit the account holder’s profile. So if an account holder is an American female, the screener is supposed to make sure that the caller speaks English, and does in fact sound like a female.

Through the website, Naskovets and Semashko, in exchange for a fee, provided the services of English- and German-speaking individuals to persons who had stolen account and biographical information to beat the above-described security screening processes. Specifically, those English and German speakers would, among other things, pose as authorized account holders and place telephone calls to financial institutions and other businesses to conduct or confirm fraudulent withdrawals, transactions, or other account activity on behalf of the Website users, who were identity thieves. Using information provided by the identity thieves over the Website, which was hosted on a computer in Lithuania, the fraudulent callers would, among other things, confirm unauthorized withdrawals or transfers from bank accounts, unblock accounts, or change the address or phone number associated with an account so that it could be accessed by the identity thieves.

For example, a request made to the Website could consist of the name of the bank the identity thief wanted to contact, the stolen account information and biographical information the thief had illegally obtained, and instructions from the identity thief as to what to say, or the fraudulent transaction that was to be conducted, during a phone call to the bank. Naskovets and his co-conspirators would assign an appropriate individual employed by the website, namely one who was the same gender and spoke the same language as the authorized account holder. After the requested call was made, Naskovets and his co-conspirators would report the results to the the identity thief, who could issue instructions for further telephone calls, if necessary.

The website posted advertisements for its services on other websites used by identity thieves, including CardingWorld.cc, which was operated by Semashko. The advertisements boasted that the website had “over 2090 people working with” it and had “done over 5400 confirmation calls” to banks, referencing calls to defeat security screening procedures and confirm or conduct fraudulent transactions, as described above.

Naskovets was provisionally arrested by Czech law enforcement authorities on April 15, 2010, at the request of the United States pursuant to bilateral treaties between the countries. Also on April 15, 2010, in a joint operation, Belarusian law enforcement authorities arrested Semashko in Belarus and Lithuanian law enforcement authorities seized the computers on which the website and the CardingWorld.cc website were hosted.

In addition, here in New York, the FBI simultaneously seized the website domain name pursuant to a seizure warrant issued by United States District Judge Lewis A. Kaplan, to whom the case is assigned.

On April 15, 2010, Belarusian authorities arrested additional co-conspirators of Semashko for related criminal conduct. The Lithuanian investigation is continuing.

The Indictment charges Naskovets with one count of conspiracy to commit wire fraud, one count of conspiracy to commit access device fraud, and one count of aggravated identity theft. If convicted on all three counts, Naskovets faces a maximum sentence of 39 years plus six months in prison.

Source: FBI, New York Office

Category: ID TheftOf Note

Post navigation

← Blood Bank's computer stolen
Political Insider Delusions, the Legislature and an implanted microchip →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • New evidence links long-running hacking group to Indian government
  • Zaporizhzhia Cyber ​​Police Exposes Hacker Who Caused Millions in Losses to Victims by Mining Cryptocurrency
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Google: Hackers target Salesforce accounts in data extortion attacks
  • The US Grid Attack Looming on the Horizon
  • US govt login portal could be one cyberattack away from collapse, say auditors
  • Two Men Sentenced to Prison for Aggravated Identity Theft and Computer Hacking Crimes
  • 100,000 UK taxpayer accounts hit in £47m phishing attack on HMRC
  • CISA Alert: Updated Guidance on Play Ransomware
  • Almost one year later, U.S. Dermatology Partners is still not being very transparent about their 2024 breach

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector
  • U.S. Enacts Take It Down Act
  • 23andMe Bankruptcy Judge Ponders Trump Bill’s Injunction Impact
  • Hell No: The ODNI Wants to Make it Easier for the Government to Buy Your Data Without Warrant
  • US State Dept. says silence or anonymity on social media is suspicious

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.