A New York federal court last week agreed with the SEC's request to freeze accounts held by the hacker Gashichev and his Estonian company. The court also ordered him to return funds withdrawn from the United States.
The Securities and Exchange Commission has frozen the assets of a Russian man charged with hacking into other people's online brokerage accounts as part of a stock price manipulation scam.
A New York federal court last week agreed with the SEC's request to freeze accounts held by Evgeny Gashichev and his Estonian company, Grand Logistic S.A.; the court also ordered Gashichev to return funds withdrawn from the United States.
Calling the scam "a high-tech version of a 'pump and dump' scheme," the SEC laid out Gashichev's actions in court filings. After buying low-priced shares of small, lightly traded companies, Gashichev used stolen brokerage account user names and passwords to access others' accounts. Without the real owner's knowledge, he used the victim's funds to place orders for large blocks of the same stock at artificially inflated prices. Those buys gave the illusion of increased legitimate trading, which raised the stock's price. Gashichev then sold the shares he had purchased earlier; the account holder saw the prices of the manipulated stocks fall sharply.
In a traditional pump-and-dump scheme, the fraudster touts a company's stock through large-scale spam campaigns that pump up the price by duping recipients into buying. The scammer than sells his shares at a profit.
"Gashichev used a modern variation on the scheme," the SEC filing read. "Instead of sending false and misleading statements to the marketplace, he was more direct. He intruded into victims' online brokerage accounts and, by causing the intruded accounts to place large purchase orders with the innocent accountholders' own funds, created the buying frenzy himself."
During a seven-week run between late August and mid-October, Gashichev made $353,609 in illegal profits through at least 25 separate scams, the SEC charged. The SEC did not disclose the number of victims.
In its filing, the SEC admitted that although the evidence against Gashichev was largely circumstantial, it was damning all the same. "There is no innocent explanation for the pattern and timing of Gashichev's trading, and the way in which they match up to trades in the intruded accounts. His trades on 25 occasions always win. The intruded accountholders always lose."
Although the SEC has prosecuted account hackers in the past -- charges against Van Dinh in 2003 for using a keylogging Trojan to steal brokerage account user names and passwords resulted in a 2004 conviction and a 13-month jail term -- the agency was not optimistic about shutting down this latest scam.
"Although Gashichev's trading through the Grand Logistic account has been stopped," the SEC said, "it is highly likely that the fraud continues."
How Enterprises Are Attacking the IT Security EnterpriseTo learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Infographic: The State of DevOps in 2017Is DevOps helping organizations reduce costs and time-to-market for software releases? What's getting in the way of DevOps adoption? Find out in this InformationWeek and Interop ITX infographic on the state of DevOps in 2017.
2017 State of IT ReportIn today's technology-driven world, "innovation" has become a basic expectation. IT leaders are tasked with making technical magic, improving customer experience, and boosting the bottom line -- yet often without any increase to the IT budget. How are organizations striking the balance between new initiatives and cost control? Download our report to learn about the biggest challenges and how savvy IT executives are overcoming them.