A seizure warrant affidavit unsealed today states Slilpp had sold allegedly stolen login credentials since 2012.
The Justice Department today announced its role in a multinational operation that led officials to disrupt and take down the infrastructure of Slilpp, an online marketplace that allegedly sold stolen online account credentials.
A seizure warrant affidavit unsealed today states Slilpp had been selling stolen login credentials including usernames and passwords for bank accounts, online payment accounts, mobile phone accounts, retailer accounts, and other types of online accounts. Vendors were able to sell stolen credentials; buyers could use these to conduct unauthorized transfers from victim accounts.
At the time the marketplace was disrupted, the affidavit alleges stolen credentials for more than 1,400 account providers were available for sale on Slilpp. While the full impact of Slilpp is not yet known, officials say the limited existing victim reports indicate stolen credentials sold on the marketplace have been used to cause more than $200 million in losses in the US.
The FBI worked with law enforcement partners in Germany, the Netherlands, and Romania to disrupt Slilpp by identifying a series of servers that hosted the marketplace infrastructure and its various domain names, the affidavit states. These servers and domain names were seized pursuant to domestic and international legal process, officiate write in a statement.
Read the full Justice Dept. release for more information.
About the Author(s)
You May Also Like
Guarding the Cloud: Top 5 Cloud Security Hacks and How You Can Avoid Them
April 4, 2024Cybersecurity Strategies for Small and Med Sized Businesses
April 11, 2024Defending Against Today's Threat Landscape with MDR
April 18, 2024Securing Code in the Age of AI
April 24, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024Black Hat Asia - April 16-19 - Learn More
April 16, 2024