News and commentary on organized crime, street crime, white collar crime, cyber crime, sex crime, crime fiction, crime prevention, espionage and terrorism.
Thursday, July 16, 2015
Operation Shrouded Horizon: Cyber Criminal Forum Taken Down By FBI And Law Enforcement Partners
The FBI reports reports on the take down of a cyber criminal forum:
It was, in effect, a one-stop, high-volume shopping venue for some of the world’s most prolific cyber criminals. Called Darkode, this underground, password-protected, online forum was a meeting place for those interested in buying, selling, and trading malware, botnets, stolen personally identifiable information, credit card information, hacked server credentials, and other pieces of data and software that facilitated complex cyber crimes all over the globe.
Unbeknownst to the operators of this invitation-only, English-speaking criminal forum, though, the FBI had infiltrated this communication platform at the highest levels and began collecting evidence and intelligence on Darkode members.
And today, the Department of Justice and the FBI—with the assistance of our partners in 19 countries around the world—announced the results of Operation Shrouded Horizon, a multi-agency investigation into the Darkode forum. Among those results were charges, arrests, and searches involving 70 Darkodemembers and associates around the world; U.S. indictments against 12 individuals associated with the forum, including its administrator; the serving of several search warrants in the U.S.; and the Bureau’s seizure of Darkode’s domain and servers.
During the investigation, the Bureau focused primarily on the Darkode members responsible for developing, distributing, facilitating, and supporting the most egregious and complex cyber criminal schemes targeting victims and financial systems around the world, including in the United States.Said FBI Deputy Director Mark Giuliano, “Cyber criminals should not have a safe haven to shop for the tools of their trade, and Operation Shrouded Horizon shows we will do all we can to disrupt their unlawful activities.”
The Darkode forum, which had between 250-300 members, operated very carefully—not just anyone could join. Ever fearful of compromise by law enforcement, Darkode administrators made sure prospective members were heavily vetted.
Similar to practices used by the Mafia, a potential candidate for forum membership had to be sponsored by an existing member and sent a formal invitation to join. In response, the candidate had to post an online introduction—basically, a resume—highlighting the individual’s past criminal activity, particular cyber skills, and potential contributions to the forum. The forum’s active members decided whether to approve applications.
Once in the forum, members—in addition to buying and selling criminal cyber products and services—used it to exchange ideas, knowledge, and advice on any number of cyber-related fraud schemes and other illegal activities. It was almost like a think tank for cyber criminals.
What’s the significance of this case, believed to be the largest-ever coordinated law enforcement effort directed at an online cyber criminal forum? In addition to shutting down a major resource for cyber criminals, law enforcement infiltrated a closed criminal forum—no easy task—to obtain the intelligence and evidence needed to identity and prosecute these criminals. And this action paid off with a treasure trove of information that ultimately led to the dismantlement of the forum and law enforcement actions against dozens of its worst criminal members around the world.
The case was led by the FBI’s Pittsburgh Field Office, with assistance from our offices in Washington, San Diego, and a number of others around the country. But it wouldn’t have happened without the support of Europol and other partners in 19 countries. And in addition to the FBI obtaining enough evidence for search warrants and indictments in the U.S., we shared information with our foreign partners to help them make their own cases against the Darkode perpetrators residing in their jurisdictions.
Operation Shrouded Horizon is a prime example of why the most effective way to combat cyber crime—which operates globally—is a law enforcement response that also transcends national borders.
Paul Davis is a writer who covers crime. He has written extensively about organized crime, street crime, sex crime, cyber crime, drug crime, white collar crime, crime fiction, crime prevention, espionage and terrorism. He has attended police academy training, gone out on patrol with police officers, accompanied detectives as they worked cases, accompanied narcotics officers on drug raids, observed criminal court proceedings and visited jails and prisons. He has covered street riots, mob wars and murder investigations. Paul Davis' "Crime Beat" column covers crime in both fact and fiction. His online column offers his Q&As with cops, crooks and crime writers. He is also a regular contributor to the Washington Times and Counterterrorism magazine. His work has also appeared in the Philadelphia Inquirer, Philadelphia Daily News and other newspapers, magazines and online publications. Paul Davis has been a student of crime since he was a 12-year-old aspiring writer growing up in South Philadelphia. He enlisted in the U.S. Navy when he was 17 in 1970 and served on the aircraft carrier USS Kitty Hawk during the Vietnam War. He also served two years on the Navy harbor tugboat USS Saugus at the U.S. nuclear submarine base at Holy Loch, Scotland. He went on to perform security work as a Defense Department civilian employee and he later became a freelance writer. You can read Paul Davis' Crime Beat columns, crime fiction and magazine and newspaper pieces on this website. You can also read his full bio by clicking on the above photo.