DOJ: Russian 'Superhacker' Gets 27 Years In Prison

According to the Justice Department, a 32-year-old Russian "superhacker" has been sentenced to 27 years in prison for stealing and selling millions of credit-card numbers, causing more than $169 million worth of damages to business and financial institutions. The Daily Beast reports: Roman Valeryevich Seleznev, 32, aka Track2, son of a prominent Russian lawmaker, was convicted last year on 38 counts of computer intrusion and credit-card fraud. "This investigation, conviction and sentence demonstrates that the United States will bring the full force of the American justice system upon cybercriminals like Seleznev who victimize U.S. citizens and companies from afar," said Acting Assistant Attorney General Kenneth Blanco said in a statement. "And we will not tolerate the existence of safe havens for these crimes -- we will identify cybercriminals from the dark corners of the Internet and bring them to justice."

Or worse,

to be on the crew of one of the russian bombers, those things that should have been mothballed 70+ years ago. Have you seen those heaps?

Re: Or worse,

[Type44Q]

Sure. In fact, knowing a bit about Soviet-era military hardware, something tells me they might be almost as unreliable as an AK-47.

Re: Or worse,

The only good thing about the AK-47 was that it was extremely reliable, and also extremely inexpensive to manufacture.

Re:Or worse,

Mileage. The only way the Ruskies could get the a bomber "intercontinental" was to stick propellers on their turbines. Like COBOL, I suppose it is. It shouldn't still be around (past the 50s), but it is, but good planes cost, and if you aren't really going to use them anyway, why pay out the a$$ when bombers aren't ever going to be sexy, like a fighter.

Re: Or worse,

[Shepanator]

Sure, a rifle and a goddamn plane are totally comparable. Ignoring the huge false equivalency argument, AK47s aren't even particularly good weapons. They are reliable and were made by the millions so they're readily available for whatever insurgency you feel like starting, those are the only good things about that gun.

Re: Or worse,

[Tuidjy]

I've never fired the AK47, only the AK74 and the AK101, but they were both perfectly serviceable at 300m. As a matter of fact, missing the shoulder and head target at 300m was automatic kitchen duty back in basic training, in '88.

I've used much more precise assault rifles... but they all had their problems - too much kick, too high of a rate of fire, and not one was nearly as easy to disassemble and clean as the good ole Kalashnikov.

For its purpose, the Kalashnikov is hard to beat at thrice the price. Of course, when money is no object there are many weapons that are simply better... if you ignore reliability, about which I have little to say, given that I had never the need to use a gun hard and put it away dirty.

Re: Or worse,

... I've never fired the AK47 ... back in basic training, in '88... good ole Kalashnikov

Are you sure you went to the right army?

Re: Or worse,

[dunkelfalke]

So you are saying that they should have been mothballed even before the predecessor of its predecessor had its first flight? How is that even possible?

Re: Or worse,

[K.+S.+Kyosuke]

If you want to pick off a commie at 300 yds, it's not.

That's probably why they were manufactured like that: in case they fell into the enemy's hands and the enemy tried to use them against your communist comrades.

Re: Or worse,

[K.+S.+Kyosuke]

Sounds like he went to the left army. ;)

Re:Or worse,

[Yomers]

Tu-95? Don’t let its looks deceive you.
Also, there are supersonic Tu-160 - only 16 such planes in active servive tho.

time space & circumstance

we build something better...no bomb us more mom us.. hugs not thugs.. free the innocent stem cells.. cease fire stand down.. sing along.. https://www.youtube.com/watch?v=wplUBFVsbtw

I'm curious

What constitutes a "superhacker" over a regular hacker? Is there a specific definition? Like once you've hacked your 1,000th computer you level up to Superhacker?

Re:I'm curious

And are there any "superhackers" who are also "supermodels"?

Re:I'm curious

I believe those data sets are likely mutually exclusive.

Re:I'm curious

[mfh]

This is journalism lingo for "he's not a script kiddie, and was successful at exploiting vulnerabilities on a large scale".

Re:I'm curious

No, it's Daily Beast lingo for "Even though this has fuck-all to do with Trump we know you're already conditioned to associate fear of Russia with fear of Trump (especially russian hackers), so we're going to exploit this to the fullest extent possible by adding silly prefixes onto words to make them sound scarier."

Re:I'm curious

Hedy Lamarr, but that was long ago.

Re: I'm curious

Well she was an actress and you can call her a hacker... and it's really rare that actresses can do what she did so that's really impressive.

But Super hacker? Nope her list of inventions aren't particularly impressive except for the torpedo guidance system which the navy didn't use until much later after they improved it much more.

Re:I'm curious

[mfh]

I'm very apolitical and don't care about Trump or Clinton. Trump is the elected president and therefore it makes no difference to me if he has a low approval rating or if his approvals were to spike to the highest levels on record. The American people wanted him as their president. Russia poured a lot of money into his campaign, it is reported, but they could easily do that to anyone running so I see it as a fair playing field under the current rules.

If Americans lack critical thinking methods to distinguish between astroturf or genuine appeal, then their democracy will extend that lack of intelligence and eventually it will cost them their place in the world as the #1 superpower because the only decisions that weaken the USA in the long run are the ones anyone voting should be concerned with.

I may disagree with all of Trump's policy but my opinion is not important. Only facts are important, which Trump's people are certainly deadset against; they say anything they want and deny factual accounts consistently.

This won't help the USA in the long run and they will certainly pay a high price for this administration's ineptitude in lost GDP and lost global relationships.

But at the end of the day, USA elected him and I believe in democracy.

If I place my hand in a fire and it hurts and my reaction is to place my other hand in the fire so that I notice my first hand's pain less, well then I certainly deserve the consequences of that stupidity.

Separation of powers

[mi]

The Department of Justice has sentenced a Russian "superhacker" to 27 years in prison

WTF? Since when is the Executive Branch doing the sentencing?!

Re:Separation of powers

It's like that little kid's game of telephone. The message started out OK but with every telling, some of the details get muddled until the end result makes no sense.

Re:Separation of powers

Yeah, this is impossible. The DOJ can't sentence anyone to anything.

Re:Separation of powers

[slickwillie]

Maybe they can sentence the OP to 20 years of remedial high school civics.

Re:Separation of powers

They only said he got sentenced, they don't appear to have said they were the one to sentence him. That would've been done by the court.

Re:Separation of powers

[tomhath]

DoJ didn't sentence him. A federal judge did.

Re:Separation of powers

The original TFS (before it was fixed) was quoted accurately by GGP. That was a sloppy, inaccurate paraphrase of a rather lazy paragraph in TFA, which didn't bother reporting what court actually handed down the decision.

Re:Separation of powers

[Jonner]

The Department of Justice has sentenced a Russian "superhacker" to 27 years in prison

WTF? Since when is the Executive Branch doing the sentencing?!

In Trump's America, the executive justices you! Or maybe the justice executes you.

WTF

What's this shit doing here?
The summary basically *is* the "article", and it raises more questions than it answers. Like, since when does the DOJ sentence people? How was this guy even tried? Not a word on him being extradited or being apprehended in any way, no mentioning of an actual trial etc.

Is this the future? Large multinational corporations brings accusations against an individual to the DOJ, who promptly announces a "sentence" without further ado, in absentia if necessary?

Re: WTF

Don't assume Slashdot is the whole world. Try looking elsewhere.

https://mobile.nytimes.com/2017/04/21/technology/russian-hacker-sentenced.html

He was extradited from the Maldives, found guilty by a federal jury in August and sentenced by a federal judge today.

His father is a member of the Duma and is a close ally of President Putin.

This is a warning that Russian hackers who damage the US shouldn't go anywhere nice on holiday, no matter how close they are to the Russian state.

While not applicable to this particular Russian...

Since Guantanamo Bay and similar "extra-jurisdictional" prisons, starting about 2001.

Obama was droning people daily by the dozen... while the intended targets probably deserved it, the actual targets (mostly civilians/kids in Syria/Lybia/Yemen cannot even sue, cause they do not have "constitutional rights").

Somebody hurry up and get that man another Nobel Peace Prize, and get one for George W. while you are at it...

Stupid credit card system

[johanw]

It's about time the US ditches its 3rd world credit card system and uses something better protected, like mandatory using the chip on the card with a pin code. No more transactions alowed with only the card number, verification date and a 3 digit number that is printed on the card.

Re:Stupid credit card system

It's about time the US ditches its 3rd world credit card system and uses something better protected, like mandatory using the chip on the card with a pin code. No more transactions alowed with only the card number, verification date and a 3 digit number that is printed on the card.

So just wave goodbye to the online ecommerce fad then?

Re: Stupid credit card system

[iserlohn]

Amex, VISA and Mastercard have a separate system to authenticate online user via an extra password, cookies and IP addresses. The system is called called 3-D Secure.

This is typically used together with Chip and PIN cards to provide an extra factor of security for both physical and online transactions.

More like...

a super mediocre hacker!

A bigger question

[buss_error]

When I see stories of credit card fraud, I have to ask a very simple question:

Why haven't card companies moved to make the fraud process less prone to being abused?

It's trivial to commit CC Fraud even with chips in the card, and it's not likely to have prosecution if you don't do it too frequently or too blatantly. Or if you are a large company. Further, the merchant is the one the frequently has to pay for the fraud, not the card issuer, even if the merchant has "run the card" and been validated.

On the flip side, I had to have a card canceled twice because a company continued to charge it after I closed the account. Turns out the first "cancel", the card issuer "helped me" by informing the people changing my card of my new card number. I had to cancel the card again, and very specifically instruct the card issuer not to redirect any further changes for the card. If it's the wrong number, decline the transaction.

In abstencia?

Is he in custody or is this a purely political "sentencing"?

Bigger Hacks

[rtb61]

So the neocons hacked the US government and started a war over nonexistant weapons of mass destruction, penalty, zero. The banksters purposefully ran a scam to inflate profits and their bonuses whilst cheating customers and investors of billions, penalty, zero.

The Russian broke the law, hacked computer networks and copied credit card numbers, which he then sold to criminals. Those criminals did the stealing, fraudulently using those insecure numbers. Compared to those other crimes with zero penalty, what is going on. I was surprised there was no claim of refusal to help or it appears any effort what so ever to get those criminals who used those credit card numbers (makes the whole thing stink of politics). I would have liked to have seen a reduced sentence, say minus a month for each prosecution the defendant helped to gain against the criminals who used the credit card numbers, or at the very least that effort made. Perhaps the Russian government would have cooperated but no politics seemed to have been the focus.

It seems a major opportunity to track down more Russian criminals was wasted, stupid as.

Re:Bigger Hacks

Guy on IT site doesn't want to see long sentences for criminal hacker.

White collar workers don't want to see white collar criminals get long sentences.

I'm sure there's some serial killer out there outraged that some other serial killer got 320 years for what? Just doing what serial killers do?

And after he gets out of prison...

[TheOuterLinux]

He becomes the next RU president with a nice retirement and in the meantime, he has mafia ties for protection. If a guy is that good, he shouldn't be sent to prison, but made to work in cyber security. If anything, they just helped him find other criminals to make friends with. What a waist. Besides, last time I checked, they considered hacking a form of terrorism, and their SWAT shoots first and asks questions later in that regard. So, it wouldn't surprise me that they're telling the public one thing and really doing something else.

Re:And after he gets out of prison...

[GNious]

If anything, they just helped him find other criminals to make friends with. What a waist.

Are waist-sizes a specific thing in prisons?

Re:And after he gets out of prison...

[TheOuterLinux]

Hahahah...-_-. We usually say "trash" or "garbage" where I am from, where as other countries say "waste bin" or " waste basket." So, I'm blaming auto-correct on that one.

Re:And after he gets out of prison...

[TheOuterLinux]

But to answer your question, yes it it is. Big spoon versus little spoon issues.

Wrong focus.

[Gravis+Zero]

Everyone involved is completely ignoring the fact that the companies involved were not properly secured. It doesn't take a "superhacker" to get past shitty security and we shouldn't be protecting companies with shitty security. Sure, punish the hacker but you need to also punish the executives that decided security shouldn't be the highest priority. When you put profit comes before security, you are asking, nay, begging to get hacked and that's exactly what happened here.

Re: Wrong focus.

[Corbets]

Nonsense. It's not as black and white as that. They could invest every penny of their profit into security and still get hacked - what then? You make a decision based on the information available to you; in too many cases, the security team is unable to articulate the risk in terms that are clear and defensible to the executives, so they're just as much at fault.

Re: Wrong focus.

I agree it is not just black and white.

But being hackable by children is different then being hackable by state actors.

Re: Wrong focus.

Yea- it's not entirely clear the business owners are entirely to blame. Certainly there is some blame, but other entities like Cisco, Microsoft, and manufacturers and/or suppliers to manufactures are to blame (Like the companies that design the chipsets and refuse to release the complete corresponding source code. I'm looking at you Intel, AMD, Allwinner to one extent or another, companies writing BIOS software, operating system software like Microsoft/Google/Apple, NVIDIA, all current wifi chipset designers, etc).

Working for Putin

He becomes the next RU president with a nice retirement and in the meantime, he has mafia ties for protection. If a guy is that good, he shouldn't be sent to prison, but made to work in cyber security. If anything, they just helped him find other criminals to make friends with. What a waist. Besides, last time I checked, they considered hacking a form of terrorism, and their SWAT shoots first and asks questions later in that regard. So, it wouldn't surprise me that they're telling the public one thing and really doing something else.

Hell, he'll be working for Putin while IN prison. Got more elections to rig..

What are you doing about NSA and CIA then?

That's what the world wants to know. Not what you do to get rid of the people who compete with or refuse to work with you.