Ukrainian gets 8-year sentence for running marketplace for Americans’ data


A Ukrainian citizen was sentenced to eight years in U.S. prison for administering a marketplace that sold the personal information of millions of Americans.

Vitalii Chychasov, 37, was arrested in March of last year while attempting to enter Hungary and was later extradited to the U.S.

Chychasov previously agreed to forfeit $5 million in proceeds from SSNDOB (for Social Security number and date of birth) — a series of websites that sold personal information, including names, dates of birth, and Social Security numbers belonging to individuals in the U.S.

The marketplace was shut down in June of last year. In total, it generated $19 million in sales and impacted about 24 million people across the U.S.

According to court records, Chychasov and other administrators advertised their websites on dark web criminal forums, provided customer support, and regularly monitored the activities of the websites, including when purchasers deposited money into their accounts.

The administrators tried to stay anonymous by maintaining servers in various countries and requiring buyers to use digital payments.

In addition to Social Security numbers, the SSNDOB sold email addresses, passwords, and credit card numbers, according to blockchain analysis firm Chainalysis. It also had ties to other popular stolen credential marketplaces like Joker’s Stash, a large darknet market that offered stolen credit card information and other information before it was shut down in January 2021.

The data sold on SSNDOB websites could allow hackers to commit a variety of frauds, including tax fraud, unemployment insurance fraud, loan fraud, and credit card fraud, according to the statement by the U.S. Attorney’s Office.

Investigators said that sales on the marketplace skyrocketed during the early stages of the COVID-19 pandemic when federal and state governments began disbursing funds to American businesses and families in response to the emergency.

Get more insights with the

Recorded Future

Intelligence Cloud.

Learn more.

No previous article

No new articles

Daryna Antoniuk
is a freelance reporter for Recorded Future News based in Ukraine. She writes about cybersecurity startups, cyberattacks in Eastern Europe and the state of the cyberwar between Ukraine and Russia. She previously was a tech reporter for Forbes Ukraine. Her work has also been published at Sifted, The Kyiv Independent and The Kyiv Post.


Leave a Reply

Your email address will not be published. Required fields are marked *

Previous Post

Healthcare manufacturer Henry Schein expects platform restored this week after cyberattack

Next Post

Cybercriminals expand targeting of Iranian bank customers with known mobile malware

Related Posts

Google Patches Yet Another Actively Exploited Chrome Zero-Day Vulnerability

Google has rolled out fixes to address a set of nine security issues in its Chrome browser, including a new zero-day that has been exploited in the wild. Assigned the CVE identifier CVE-2024-4947, the vulnerability relates to a type confusion bug in the V8 JavaScript and WebAssembly engine. It was reported by Kaspersky researchers Vasily Berdnikov and Boris
Read More

Mysterious Cyber Attack Took Down 600,000+ Routers in the U.S.

More than 600,000 small office/home office (SOHO) routers are estimated to have been bricked and taken offline following a destructive cyber attack staged by unidentified cyber actors, disrupting users' access to the internet. The mysterious event, which took place between October 25 and 27, 2023, and impacted a single internet service provider (ISP) in the U.S., has been codenamed Pumpkin
Read More