Dark web crypto laundering kingpin sentenced to 12.5 years in prison
- Reference: 1731328692
- News link: https://www.theregister.co.uk/2024/11/11/bitcoin_fog_sentencing/
- Source link:
Roman Sterlingov, 36, a Russian-Swedish national, was also ordered to repay more than half a billion dollars accrued from the cryptocurrency mixing service that he ran for a decade between 2011 and 2021.
Bitcoin Fog was assessed to have processed 1.2 million Bitcoin during that time, worth roughly $400 million at the time it was shuttered. Of this, Sterlingov was ordered to repay $395,563,025.39 in restitution, forfeit roughly $1.76 million in seized assets, and relinquish control of Bitcoin Fog's wallet containing more than $100 million in [1]Bitcoin .
[2]
He was [3]found guilty back in March, at which point he faced a maximum 50-year sentence. Prosecutors said the vast majority of Sterlingov's wealth came from the proceeds of crime in which he and his online service helped criminals hide from law enforcement.
[4]
[5]
The court heard that the crimes associated with this activity included the sale of drugs, computer misuse offenses, identity theft, and child sexual abuse material (CSAM).
"Roman Sterlingov laundered over $400 million in criminal proceeds through Bitcoin Fog, his cryptocurrency 'mixing' service that was open for business to criminals looking to hide dirty money," said Principal Deputy Assistant Attorney General Nicole M Argentieri, head of the Justice Department's Criminal Division.
[6]
"Through his illicit money laundering operation, Sterlingov helped criminals launder proceeds of drug trafficking, computer crime, identity theft, and the sexual exploitation of children.
"Today's sentencing underscores the Justice Department's commitment to holding those who facilitate criminal activity fully accountable for their crimes. I am especially proud of the dedicated investigators and prosecutors who worked tirelessly to unmask and prosecute the Bitcoin Fog scheme."
[7]Scattered Spider, BlackCat claw their way back from criminal underground
[8]Scumbag puts 'stolen' Nokia source code, SSH and RSA keys, more up for sale
[9]Columbus, Ohio, confirms 500K people affected by Rhysida ransomware attack
[10]Senator accuses sloppy domain registrars of aiding Russian disinfo campaigns
There are many cryptocurrency mixers available to criminals, so the downfall of Bitcoin Fog won't put a significant dent in their use. However, investigators will be pleased that a service as relied upon as Sterlingov's could be scuppered and distrust sown throughout the community of criminals who use them.
Different cryptocurrencies claim to offer varying [11]levels of anonymity , although law enforcement agencies have become adept at tracking criminals across most of the major [12]blockchains over time.
It's obviously in the criminals' best interests to be as untraceable along these blockchains as possible. Mixers make investigators' jobs a great deal more difficult by pooling all users' funds together – many different crypto tokens belonging to different people – and redistributing them back to the users after taking a cut for the trouble.
[13]
They're not illegal in most places. If they're not being abused to launder the proceeds of crime, there's not much to attract law enforcement. That said, they are indeed widely abused, which is why action is taken to end the more popular ones.
Legitimate uses of mixers can be found in oppressive regimes that heavily monitor payments made by citizens. Using mixers can help pay for legal goods and services more anonymously, should someone wish to do so. ®
Get our [14]Tech Resources
[1] https://www.theregister.com/2024/10/16/wales_bitcoin_landfill_lawsuit/
[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2ZzI4OB54Ytz0ztFCF7XhzAAAABg&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0
[3] https://www.theregister.com/2024/03/13/bitcoin_fog_conviction/
[4] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44ZzI4OB54Ytz0ztFCF7XhzAAAABg&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[5] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33ZzI4OB54Ytz0ztFCF7XhzAAAABg&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[6] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44ZzI4OB54Ytz0ztFCF7XhzAAAABg&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[7] https://www.theregister.com/2024/11/08/scattered_spider_blackcat_return/
[8] https://www.theregister.com/2024/11/06/nokia_data_theft/
[9] https://www.theregister.com/2024/11/04/columbus_rhysida_ransomware/
[10] https://www.theregister.com/2024/10/27/senator_domain_registrars_russia_disinfo/
[11] https://www.theregister.com/2018/03/16/cyber_crime_economics/
[12] https://www.theregister.com/2021/12/06/the_dark_equation_of_harm/
[13] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33ZzI4OB54Ytz0ztFCF7XhzAAAABg&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[14] https://whitepapers.theregister.com/
Re: Open
X -> M -> Y, where X and Y are large sets of wallets, and M is a single "mixer" wallet. The amounts being transferred in and out are different. You may be able to identify the individual wallets in X and Y but you can't identify that funds going into any specific wallet in the set Y come from any specific wallet in the set X. Hence "mixer". All you will be able to see is that various transfers from wallets in X go into M, and that various transfers from M go into wallets in Y. X and Y will probably have a fair overlap as well.
The blockchain will record the transactions, and the identity of the wallets involved, but that's it.
As the article states, this may have legitimate uses, but it is also used (a lot) by criminals for money laundering.
edit - I'll also add, that it is trivially easy to set up a new wallet address, receive funds into that wallet, transfer them somewhere else, and then never use that wallet address ever again. That wallet address will be recorded in the blockchain, sure, but there is zero context associated with it, unless you can otherwise associate it with an individual. Because the blockchain is decentralised, there's nothing to associate that wallet with any physical location, or IP address, unless you happen to sniff where those transactions enter the network from, which requires previous knowledge of who is doing those things in the first place.
Re: Open
Maybe your new wallet will not be linked to the hard earned ransomware money, but will be loaded with money from murder for hire.
It's like thief doing bank transfer to money launderer and then getting bank transfer from money launderer to their other bank account. Except that anyone can read all the accounts.
You can always trace where derivatives of X ended up. So if you are using a mixer, you are putting mark on your back.
Open
Did they know that all transaction history is visible in the Blockchain so they can "mix" to their hearts content, but it is all there for everyone to see?