Three arrested in Kosovo for operating Rydox cybercriminal marketplace

Avatar

The U.S. Justice Department on Thursday said it took down the popular cybercriminal marketplace Rydox and requested the extradition of two Kosovo nationals responsible for running it.

Rydox was used to sell stolen personal information, device access and other tools necessary for cybercrime and fraud. 

Ardit Kutleshi, 26, and Jetmir Kutleshi, 28, were arrested in Kosovo by local law enforcement on Thursday and U.S. officials submitted a request for extradition through an indictment unsealed in the Western District of Pennsylvania. 

Both men are charged with two counts of identity theft, one count of conspiracy to commit identity theft, one count of aggravated identity theft, one count of access device fraud and one count of money laundering. 

If convicted, they each face a maximum of 37 years in prison. 

Kosovo national Shpend Sokoli, another person involved in running Rydox, was also arrested on Thursday in Albania by the Special Anti-Corruption Body (SPAK) where he will be prosecuted. The Justice Department did not respond to requests for comment about why Sokoli is not being extradited. 

All three men ran the popular platform and earned at least $230,000 in revenue since creating it in 2016. More than 7,600 sales were conducted on Rydox — most of which involved personal information, credit card numbers and login credentials from people in the U.S. 

Prosecutors said Rydox had about 18,000 users who bought Social Security numbers and manuals on how to create scam pages and more. Users had to make a deposit to the site before being approved to buy products sold on the platform. 

An FBI agent created an account on the site and purchased 40 packages called “fullz” — which include a person’s name, address, Social Security number, date of birth, driver’s license number and email address.

Deputy Assistant Attorney General Nicole Argentieri, head of the Justice Department’s Criminal Division, said thousands of U.S residents were victimized by the platform through the sale of their information.

The Justice Department also seized the domain www.Rydox.cc and worked with the Royal Malaysian Police to take down servers in Kuala Lumpur, Malaysia that the platform used to host the marketplace.

CybercrimeGovernmentNewsNews Briefs
Get more insights with the

Recorded Future

Intelligence Cloud.

Learn more.

No previous article

No new articles

Jonathan Greig

is a Breaking News Reporter at Recorded Future News. Jonathan has worked across the globe as a journalist since 2014. Before moving back to New York City, he worked for news outlets in South Africa, Jordan and Cambodia. He previously covered cybersecurity at ZDNet and TechRepublic.

 

Total
0
Shares
Previous Post

South Carolina credit union says 240,000 impacted by recent cyberattack

Next Post

Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading Techniques

Related Posts

Ukrainian Minors Recruited for Cyber Ops and Reconnaissance in Russian Airstrikes

The Security Service of Ukraine (SBU or SSU) has exposed a novel espionage campaign suspected to be orchestrated by Russia's Federal Security Service (FSB) that involves recruiting Ukrainian minors for criminal activities under the guise of "quest games." Law enforcement officials said that it detained two FSB agent groups following a special operation in Kharkiv. These groups, per the agency,
Avatar
Read More

FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions

The U.S. Federal Bureau of Investigation (FBI) has sought assistance from the public in connection with an investigation involving the breach of edge devices and computer networks belonging to companies and government entities. "An Advanced Persistent Threat group allegedly created and deployed malware (CVE-2020-12271) as part of a widespread series of indiscriminate computer intrusions designed
Avatar
Read More