DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Manhattan U.S. Attorney Charges Belarusian Creator of International Identity Theft Website

Posted on April 19, 2010 by Dissent

Preet Bharara, the United States Attorney for the Southern District of New York, and Joseph M. Demarest, Jr., the Assistant Director-in-Charge of the New York Office of the FBI, announced today the unsealing of an indictment against Dmitry M. Naskovets—creator and operator of CallService.biz, an online business that assisted over 2,000 identity thieves in over 5,000 instances of fraud—on charges of conspiracy to commit wire fraud, conspiracy to commit credit card fraud, and aggravated identity theft. At the request of the United States, authorities of the Czech Republic on Thursday, April 15, 2010, provisionally arrested Naskovets pending his extradition to the United States.

According to the indictment unsealed today in Manhattan federal court:

In June 2007, Naskovets, a Belarusian national, and co-conspirator Sergey Semashko, also a Belarusian national who is charged by the Belarusians, created CallService.biz, an online business intended to assist identity thieves in exploiting stolen financial information, such as credit card and debit card numbers. The website was, among other things, designed to counteract security measures put in place by financial institutions. These security measures, for example, require persons seeking to make transfers or withdrawals from accounts, or to conduct other financial transactions to verify by telephone certain information associated with the account. Businesses that accept online or telephone purchases by credit card have similar security measures. Representatives at such financial institutions and businesses are trained to make sure that persons purporting over the telephone to be account holders appear to fit the account holder’s profile. So if an account holder is an American female, the screener is supposed to make sure that the caller speaks English, and does in fact sound like a female.

Through the website, Naskovets and Semashko, in exchange for a fee, provided the services of English- and German-speaking individuals to persons who had stolen account and biographical information to beat the above-described security screening processes. Specifically, those English and German speakers would, among other things, pose as authorized account holders and place telephone calls to financial institutions and other businesses to conduct or confirm fraudulent withdrawals, transactions, or other account activity on behalf of the Website users, who were identity thieves. Using information provided by the identity thieves over the Website, which was hosted on a computer in Lithuania, the fraudulent callers would, among other things, confirm unauthorized withdrawals or transfers from bank accounts, unblock accounts, or change the address or phone number associated with an account so that it could be accessed by the identity thieves.

For example, a request made to the Website could consist of the name of the bank the identity thief wanted to contact, the stolen account information and biographical information the thief had illegally obtained, and instructions from the identity thief as to what to say, or the fraudulent transaction that was to be conducted, during a phone call to the bank. Naskovets and his co-conspirators would assign an appropriate individual employed by the website, namely one who was the same gender and spoke the same language as the authorized account holder. After the requested call was made, Naskovets and his co-conspirators would report the results to the the identity thief, who could issue instructions for further telephone calls, if necessary.

The website posted advertisements for its services on other websites used by identity thieves, including CardingWorld.cc, which was operated by Semashko. The advertisements boasted that the website had “over 2090 people working with” it and had “done over 5400 confirmation calls” to banks, referencing calls to defeat security screening procedures and confirm or conduct fraudulent transactions, as described above.

Naskovets was provisionally arrested by Czech law enforcement authorities on April 15, 2010, at the request of the United States pursuant to bilateral treaties between the countries. Also on April 15, 2010, in a joint operation, Belarusian law enforcement authorities arrested Semashko in Belarus and Lithuanian law enforcement authorities seized the computers on which the website and the CardingWorld.cc website were hosted.

In addition, here in New York, the FBI simultaneously seized the website domain name pursuant to a seizure warrant issued by United States District Judge Lewis A. Kaplan, to whom the case is assigned.

On April 15, 2010, Belarusian authorities arrested additional co-conspirators of Semashko for related criminal conduct. The Lithuanian investigation is continuing.

The Indictment charges Naskovets with one count of conspiracy to commit wire fraud, one count of conspiracy to commit access device fraud, and one count of aggravated identity theft. If convicted on all three counts, Naskovets faces a maximum sentence of 39 years plus six months in prison.

Source: FBI, New York Office

Related posts:

  • Creator of CallService.biz extradited to New York
  • IRS’s Top Ten Identity Theft Prosecutions
  • Operation Phish Phry reels in 100 in U.S. and Egypt
  • IRS’s Top 10 Identity Theft Prosecutions
Category: ID TheftOf Note

Post navigation

← Blood Bank's computer stolen
Political Insider Delusions, the Legislature and an implanted microchip →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit
  • British national “IntelBroker” charged with causing $25 million in damages; U.S. seeks his extradition from France
  • France issues press statement about arrest of ShinyHunters members
  • Patients Allege Home Delivery Pharmacy Failed to Timely Notify Them of Data Breach
  • Hackers breach Norwegian dam, open valve at full capacity

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions
  • NY Attorney General James Affirms Hospitals Must Provide Access to Emergency Abortion Care
  • How Internet of Things devices affect your privacy – even when they’re not yours
  • Sky Views Personal Data as a Potential Weapon in IPTV Piracy War
  • Florida Used a Nationwide Surveillance Camera Network 250 Times To Aid in Immigration Arrests
  • Federal Court Strikes Down HIPAA Reproductive Health Care Privacy Rule

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.