E-Root Market Admin Sentenced to 42 Months for Promoting 350K Stolen Credentials

E-Root Marketplace

A 31-year-old Moldovan nationwide has been sentenced to 42 months in jail within the U.S. for working a bootleg market known as E-Root Market that supplied on the market a whole bunch of hundreds of compromised credentials, the Division of Justice (DoJ) introduced.

Sandu Boris Diaconu was charged with conspiracy to commit entry gadget and laptop fraud and possession of 15 or extra unauthorized entry units. He pleaded responsible on December 1, 2023.

“The E-Root Market operated throughout a broadly distributed community and took steps to cover the identities of its directors, consumers, and sellers,” the DoJ said final week.


“Patrons may seek for compromised laptop credentials on E-Root, comparable to usernames and passwords that might enable consumers to entry distant computer systems for functions of stealing non-public data or manipulating the contents of the distant laptop.”

Potential prospects may additionally seek for RDP and SSH credentials primarily based on varied filter standards comparable to value, geographic location, web service supplier, and working system.

In an try to cover the transaction trails, {the marketplace} offered a web based fee system known as Excellent Cash, which additional made it attainable to transform Bitcoin to and from Excellent Cash. The infrastructure related to E-Root and Excellent Cash has since been seized by regulation enforcement as of late 2020.

Greater than 350,000 credentials are estimated to have been marketed on the market on the unlawful market, with most of the victims subjected to ransomware assaults and identification tax fraud schemes.

Diaconu, who served because the administrator between January 2015 and February 2020, was arrested within the U.Ok. in Might 2021 whereas making an attempt to flee the nation. He was extradited to the U.S. in late October 2023.

“The E-Root Market operated throughout a broadly distributed community and took steps to cover the identities of its directors, consumers, and sellers,” the DoJ stated.

The event comes because the DoJ additionally said it is recovering $2.3 million price of cryptocurrency linked to a pig butchering romance rip-off that victimized not less than 37 people throughout the U.S.


Such schemes search to construct belief with victims in on-line communications after which entice them into investing in a cryptocurrency rip-off underneath the guise of fast returns. As an alternative, the funds are diverted to the scammers’ wallets, resulting in monetary losses.

In line with Web3 anti-fraud firm Rip-off Sniffer, roughly 57,000 victims have misplaced about $47 million to crypto phishing scams within the month of February 2024 alone.

“In comparison with January, the variety of victims who misplaced over $1 million decreased by 75%,” it said in a collection of posts on X (previously Twitter). “Most victims have been lured to phishing web sites by means of phishing feedback from impersonated Twitter accounts.”

Notify of
Inline Feedbacks
View all comments
Previous Post
North Korea-Linked Group Levels Multistage Cyberattack on South Korea

North Korea-Linked Group Ranges Multistage Cyberattack on South Korea

Next Post
NetSupport RAT

New Phishing Assault Makes use of Intelligent Microsoft Workplace Trick to Deploy NetSupport RAT

Related Posts