ShadowCrew
ShadowCrew was a cybercrime message board (forum) that operated under the domain name ShadowCrew.com between August 2002 - October 2004.[1]
Origins
The concept of the ShadowCrew was developed in early 2002 during a chat session between Andrew Mantovani (age 21) and David Appleyard (age 43).[1] It is unknown as to exactly what the circumstances were which led to the pair becoming acquainted.
Mantovani lived in Arizona and attended Scottsdale Community College part-time as a business major.[1] Scott S. Christie, the U.S. attorney involved with prosecuting the case stated it was important (to Mantovani) to be recognized as the spiritual leader of ShadowCrew.[1] Appleyard was a retired mortgage broker who lived in Linwood, New Jersey with his wife, two kids and his sick mother.[1] It was Mantovani, a business major, who came up with the idea of an eBay style business model for ShadowCrew that introduced people in need of stolen data or counterfeit identification to verified sellers of such products.[1]
The ShadowCrew website also contained a number of sub-forums where the latest information about hacking tricks, social engineering, credit card fraud, virus development, scams, and phishing.[2]
Organizational structure
ShadowCrew offered a haven for "carders" and hackers to trade, buy, and sell anything from stolen personal information, to hacked credit card numbers and false identification. Shadowcrew emerged from another underground site, counterfeitlibrary.com, in early 2002 and would be followed up by carderplanet.com, a website primarily in the Russian language. The site also facilitated selling drugs wholesale.[3]
The key players who would become Administrators and Moderators were Deck (Andrew Mantovani), BlackOps (David Appleyard) and a handful of others. Shadowcrew grew to over "4,000 members" (many were "clones" and inactive accounts)[4] worldwide with a small group of members leading the forums. During its early years, the site was hosted overseas, in Hong Kong, but shortly before CumbaJohnny (Albert Gonzalez)'s arrest, the server was in his possession, somewhere in New Jersey.
Aftermath and legacy
The site flourished from the time it opened in 2002 until its demise in late October 2004. Even though the site was booming with criminal activity and all seemed well, the members did not know what was going on behind the scenes. Federal agents received their "big break" when they found CumbaJohnny.[5] Upon Cumba's arrest, he immediately turned and started working with federal agents.[6] From April 2003 to October 2004, Cumba assisted in gathering information and monitoring the site and those who utilized it.[6] He started by taking out many of the Russians who were hacking databases and selling counterfeit credit cards.[6] It was later confirmed that a high-ranking member of the inner-circle of the ShadowCrew, CumbaJohnny (Albert Gonzalez) was a long term police informant who was responsible for teaching the USSS how to monitor, trap and arrest the ShadowCrew.[7]
Many sites appeared after Shadowcrew's demise, one of which was specifically focused on unraveling the mysteries of what actually happened. This site, thegrifters.net, was run by a formally indicted member, David Thomas (a.k.a., El Mariachi) in which he converted his old fraud site to an investigative site.[8] Members of this group uncovered and compiled many pieces of information on the indicted members of Shadowcrew until thegrifters.net was taken down in early 2006.[8]
4,000 members: The Federal indictment says, "Shadowcrew was an international organization of approximately 4,000 members…" The last available page before October 27, 2004 on archive.org[9] shows 2,709 registered members. To people familiar with the ShadowCrew forum, it is well known that many members had multiple user names. Members who were banned from the forum would frequently register with another user name as well. Lastly, the forum was around for over 2 years so there were likely many inactive accounts.[4]
$4 million in losses: this figure was arrived at by multiplying the number of credit cards transferred by $500 each (as per federal law when no monetary figure in a fraud case can be determined). This figure assumes that every single card was valid and had been used.[10]
ShadowCrew admin Brett Shannon Johnson managed to avoid being arrested following the 2004 raids, but was picked up in 2005 on separate charges then turned informant. Continuing to commit tax fraud as an informant, 'Operation Anglerphish' embedded him as admins on both ScandinavianCarding and CardersMarket. When his continued carding activities were exposed as a part of a separate investigation in 2006, he briefly went on the run before being caught for good in August of that year.[11]
In 2011, former Bulgarian ShadowCrew member Aleksi Kolarov aka APK was finally arrested and held Paraguay before being extradited to the United States in 2013 to face charges.[12]
See also
References
- 1 2 3 4 5 6 Brian Grow, with Jason Bush (May 30, 2005). "Hacker Hunters: An elite force takes on the dark side of computing". BusinessWeek. Retrieved 2012-01-30.
- ↑ Lucy Rodgers (20 December 2007). "Smashing the criminals' e-bazaar". BBC News. Retrieved 2012-01-30.
- ↑ Allen, Hoffmann (5 January 2015). "Before DarkNetMarkets Were Mainstream". Retrieved 16 August 2015.
- 1 2 Albert Breton (2009). Multijuralism: manifestations, causes, and consequences. Ashgate Publishing. Retrieved 2012-01-30.
- ↑ Poulsen, Kevin (2008-12-22). "One Hacker's Audacious Plan to Rule the Black Market in Stolen Credit Cards". Wired.com. p. 4. Retrieved 2009-01-05.
- 1 2 3 Poulsen, Kevin (2008-08-05). "Feds Charge 11 in Breaches at TJ Maxx, OfficeMax, DSW, Others". Threat Level (Wired.com). Retrieved 2009-01-05.
- ↑ Brad Stone (August 11, 2008). "Global Trail of an Online Crime Ring". New York Times. Retrieved January 30, 2012.
- 1 2 Zetter, Kim (2007-01-30). "I Was a Cybercrook for the FBI". Wired.com. Retrieved 2009-01-05.
- ↑ "Shadowcrew board". Shadowcrew. Archived from the original on 2004-07-01. Retrieved 2009-01-05.
- ↑ 2004 Federal Sentencing Guidelines Manual - Chapter 2
- ↑ Zetter, Kim (6 June 2007). "Secret Service Operative Moonlights as Identity Thief". Retrieved 16 August 2015.
- ↑ Zetter, Kim (1 July 2013). "9 Years After Shadowcrew, Feds Get Their Hands on Fugitive Cybercrook". Retrieved 16 August 2015.
External links
- Archives of shadowcrew.com
- 'ShadowCrew Indictment
- Business Week "Hacker Hunters" article
- Another article in Business Week which mentions ShadowCrew in the context of e-gold