FSB hacker accused of treason was stealing money from credit cards
Law enforcers have arrested a hacker, whom FSB recruited several years ago, as part of the high-profile case of treason.
As RBC reports, security officials see a connection with the case of information theft involving Shaltay-Boltay (Humpty Dumpty) hacker group.
According to law enforcement bodies, four persons have been arrested on charges of treason (Article 275 of the Russian Criminal Code). Operational support of this case is provided by the Internal Security Department (ISD) of the FSB.
To date, the names of the three defendants are known. They include Kaspersky Lab employee Ruslan Stoyanov, Head of FSB’s Information Security Center (ISC) Sergey Mikhaylov, and senior officer of the 2nd Department of ISC Operative Control Dmitry Dokuchaev.
Although, these arrests were sanctioned back in December last year, none of the Moscow courts has confirmed this information.
As for the defendants Mikhailov and Dokuchaev, both of them are employees of FSB ISC, engaged in combating cybercrime.
Mikhaylov was detained during a session of the FSB board. He came to the attention of his colleagues after the US accused Vladimir Fomenko, the owner of King Servers, of a cyber attack on electoral systems in Arizona and Illinois. Then, US intelligence agencies said that it was Mikhaylov who provided this information to them.
Vladimir Fomenko had rented servers from Chronopay Vostok. This company, in turn, was controlled by businessman Pavel Vrublevsky. Despite the fact that the cooperation between the two companies is confirmed by a number of publications on the Chronopay site, Vladimir Fomenko claims that his company does not rent anything and has been purchasing its own equipment since 2012.
In 2013, Pavel Vrublevsky was convicted for organizing DoS-attacks on Assist payment system,where Aeroflot is the main client. Due to his actions, users were unable to pay for e-tickets on the airline's website for a week. Vrublevsky denied his guilt, claiming he had been slandered by Sergey Mikhailov. The court sentenced him to 2.5 years in prison, but he was released on parole a year later.
The name of Sergey Mikhaylov appeared in press in connection with the situation over the creator of Roem.ru Yury Sinodov. The latter claimed that he had twice received requests from the FSB signed by Mikhailov. First time it was in 2007, and second in 2011. After receiving the second request, Sinodov filed a complaint with the prosecutor's office, which found the FSB's actions an infringement of the law on operational and investigative activity.
The media has been stating that the fact that the initiation of cases against Sergey Mikhailov and Ruslan Stoyanov is directly related to the internal opposition in the security services.
At the same time, the information from sources familiar with the investigation is beginning to immerse in the media. According to them, the treason case concerns not only the leakage of information about King Servers, but also the Shaltay-Boltay hacker group. Moreover, FSB officers believe that Mikhailov himself has a direct relationship with this group of hackers and acts as their supervisor. His colleague Dmitry Dokuchaev is also a Shaltay-Boltay member. He used to be a hacker known as Forb. He believes the attack on the US administration site is his biggest achievement, and claims that carding, i.e. stealing of money from other people's bank cards, is most profitable in hackers' work.
It is due to carding that he has come to the attention of law enforcers. Dokuchaev has been given a choice: joining the security services or having criminal proceedings instituted against him. There is a large number of former hackers working in the FSB Information Security Center.
Another defendant in the case is Ruslan Stoyanov, a Kaspersky Lab employee. He has worked there since 2012, leading the investigation department of computer incidents. This department is cooperating both with the FSB and the MIA. It was Stoyanov who assisted in investigation of the Lurk hacker group case, on hackers who had stolen about 3 billion rubles from a number of banks and big businesses. It should be noted that Kaspersky Lab has announced that the case opened against Stoyanov is not related to his activities in the company.
The Lieutenant of the police resisted the officers of the Interior Ministry Bureau for Internal Affairs, who tried to take him to the investigator. Then he was joined by a colleague in the Captain's rank.
According to the source, charges against the FSB officers in the high treason case with classified files are directly related to a series of arrested Russians suspected of cyber crimes all over the world.