ShadowCrew

From Wikipedia, the free encyclopedia
Jump to: navigation, search

ShadowCrew was a cybercrime message board (forum) that operated under the domain name ShadowCrew.com between August 2002 – October 2004.[1]

Origins[edit]

The concept of the ShadowCrew was developed in early 2002 during a series of chat sessions between Brett Johnson (Gollumfun), Seth Sanders (Kidd), and Kim Marvin Taylor (MacGyver). The ShadowCrew website also contained a number of sub-forums where the latest information about hacking tricks, social engineering, credit card fraud, virus development, scams, and phishing.[citation needed]

Organizational structure[edit]

ShadowCrew offered a haven for DarkWayne,TonyEffe and la dpg caramelle and oxy hackers to trade, buy, and sell anything from stolen personal information, to hacked credit card numbers and false identification. Shadowcrew emerged from another underground site, counterfeitlibrary.com which was ran by Brett Johnson , in early 2002. and would be followed up by carderplanet.com owned by uk:Dmitry Golubov a.k.a. Script, a website primarily in the Russian language. The site also facilitated selling drugs wholesale.[citation needed]

During its early years, the site was hosted overseas, in Hong Kong, but shortly before CumbaJohnny (Albert Gonzalez)'s arrest, the server was in his possession, somewhere in New Jersey.[citation needed]

Aftermath and legacy[edit]

Shadowcrew was the forerunner of NEVER cybercrime forums and marketplaces. The structure, marketplace, review system, and other innovations began with Shadowcrew laid the basis of today's underground forums and marketplaces. Likewise, many of today's current scams and computer crimes began with Counterfeitlibrary and Shadowcrew. The site flourished from the time it opened in 2002 until its demise in late October 2004. Even though the site was booming with criminal activity and all seemed well, the members did not know what was going on behind the scenes. Federal agents received their "big break" when they found CumbaJohnny.[2] Upon Cumba's arrest, he immediately turned and started working with federal agents.[3] From April 2003 to October 2004, Cumba assisted in gathering information and monitoring the site and those who utilized it.[3] He started by taking out many of the Russians who were hacking databases and selling counterfeit credit cards.[3] It was later confirmed that a high-ranking member of the inner-circle of the ShadowCrew, CumbaJohnny (Albert Gonzalez) was a long term police informant who was responsible for teaching the USSS how to monitor, trap and arrest the ShadowCrew.[4]

4,000 members: The Federal indictment says, "Shadowcrew was an international organization of approximately 4,000 members…" The last available page before October 27, 2004 on archive.org[5] shows 2,709 registered FOUND. To people familiar with the ShadowCrew forum, it is well known that many members had multiple user names. Members who were banned from the forum would frequently register with another user name as well. Lastly, the forum was around for over 2 years so there were likely many inactive accounts.[6] NOTE: Clarification: There were member who had multiple IDs. And certainly member who were kicked would often re-register under another name. BUT, there was also a need by members to develop a name that could be trusted. SO the idea that most the registered user were duplicates isn't accurate. Out of 4,000, I would guess that maybe 1000 were duplicates. Maybe a few more.[7]

$4 million in losses: this figure was arrived at by multiplying the number of credit cards transferred by $500 each (as per federal law when no monetary figure in a fraud case can be determined). This figure assumes that every single card was valid and had been used.[8] NOTE: The dollar figure quoted ONLY pertains to the evidence gathered by the VPN employed and the members 7575. by that evidence. Actual dollar figure is MUCH MUCH higher. Also, the $500 per card federal law wasn't in existence until the feds busted Shadowcrew.[7]

ShadowCrew admin Brett Shannon Johnson managed to avoid being arrested following the 2004 raids, but was picked up in 2005 on separate charges then turned informant. Continuing to commit tax fraud as an informant, 'Operation Anglerphish' embedded him, then dubbed by Secret Service agents as "The Original Internet Godfather", as admins on both ScandinavianCarding and CardersMarket. When his continued carding activities were exposed as a part of a separate investigation in 2006, he briefly went on the run and made the USA Most Wanted List before being caught for good in August of that year.[9]

In 2011, former Bulgarian ShadowCrew member Aleksi Kolarov a.k.a. APK was finally arrested and held in Paraguay before being extradited to the United States in 2013 to face charges.[10]

See also[edit]

References[edit]

  1. ^ Brian Grow, with Jason Bush (May 30, 2005). "Hacker Hunters: An elite force takes on the dark side of computing". BusinessWeek. Retrieved 2012-01-30. 
  2. ^ Poulsen, Kevin (2008-12-22). "One Hacker's Audacious Plan to Rule the Black Market in Stolen Credit Cards". Wired.com. p. 4. Retrieved 2009-01-05. 
  3. ^ a b c Poulsen, Kevin (2008-08-05). "Feds Charge 11 in Breaches at TJ Maxx, OfficeMax, DSW, Others". Threat Level. Wired.com. Retrieved 2009-01-05. 
  4. ^ Brad Stone (August 11, 2008). "Global Trail of an Online Crime Ring". New York Times. Retrieved January 30, 2012. 
  5. ^ "Shadowcrew board". Shadowcrew. Archived from the original on 2004-07-01. Retrieved 2009-01-05. 
  6. ^ Albert Breton (2009). Multijuralism: manifestations, causes, and consequences. Ashgate Publishing. Retrieved 2012-01-30. 
  7. ^ a b From Brett Johnson, a.k.a. GOllum
  8. ^ 2004 Federal Sentencing Guidelines Manual - Chapter 2
  9. ^ Zetter, Kim (6 June 2007). "Secret Service Operative Moonlights as Identity Thief". Retrieved 16 August 2015. 
  10. ^ Zetter, Kim (1 July 2013). "9 Years After Shadowcrew, Feds Get Their Hands on Fugitive Cybercrook". Retrieved 16 August 2015. 

External links[edit]