Embattled Nigerian internet fraudster, Ramon Olorunwa Abbas, a.k.a Hushpuppi, now incarcerated in California as he awaits trial for cyber fraud has been linked by the FBI to North Korean hackers, said to be the biggest bank robbers in the world.
The Justice Department in a detailed statement released on Friday, said Abbas took part in a “North Korean-perpetrated cyber-enabled heist from a Maltese bank in February 2019.”
His role was as a collaborator with a North Korean money launderer, Ghaleb Alaumary, based in Mississauga, Ontario, Canada.
37 year-old Alaumary is one of the people charged by the FBI for many criminal schemes. The others are three North Koreans.
“Alaumary agreed to plead guilty to the charge, which was filed in the U.S. District Court in Los Angeles on Nov. 17, 2020”, according to the statement.
“Alaumary was a prolific money launderer for hackers engaged in ATM cash-out schemes, cyber-enabled bank heists, business email compromise (BEC) schemes, and other online fraud schemes. Alaumary is also being prosecuted for his involvement in a separate BEC scheme by the U.S. Attorney’s Office for the Southern District of Georgia.
“With respect to the North Korean co-conspirators’ activities, Alaumary organized teams of co-conspirators in the United States and Canada to launder millions of dollars obtained through ATM cash-out operations, including from BankIslami and a bank in India in 2018.
“Alaumary also conspired with Ramon Olorunwa Abbas, aka “Ray Hushpuppi,” and others to launder funds from a North Korean-perpetrated cyber-enabled heist from a Maltese bank in February 2019”.
Abbas already has a case of his own.
Last year, the U.S. Attorney’s Office in Los Angeles charged him in a separate case alleging that he conspired to launder hundreds of millions of dollars from BEC frauds and other scams.
In a July statement, the Justice Department referred to the Maltese bank attack as “a $14.7 million cyber-heist from a foreign financial institution.”
“Both the date and amount match that of the attack on Malta’s Bank of Valletta in February 2019”, reported Forbes.
Abbas, 38, was arrested in Dubai last year.
He arrived in the U.S. on July 3 to face criminal charges over allegations that he made “hundreds of millions of dollars” from business email compromise frauds and other scams.
His trial was to have commenced late last year, but was delayed by the COVID-19 pandemic.
Below is the US Justice Department statement on the indictment of three North Korean military hackers involved in cyber heists running into over $1.3billion
A federal indictment unsealed today charges three North Korean computer programmers with participating in a wide-ranging criminal conspiracy to conduct a series of destructive cyberattacks, to steal and extort more than $1.3 billion of money and cryptocurrency from financial institutions and companies, to create and deploy multiple malicious cryptocurrency applications, and to develop and fraudulently market a blockchain platform.
A second case unsealed today revealed that a Canadian-American citizen has agreed to plead guilty in a money laundering scheme and admitted to being a high-level money launderer for multiple criminal schemes, including ATM “cash-out” operations and a cyber-enabled bank heist orchestrated by North Korean hackers.
“As laid out in today’s indictment, North Korea’s operatives, using keyboards rather than guns, stealing digital wallets of cryptocurrency instead of sacks of cash, are the world’s leading bank robbers,” said Assistant Attorney General John C. Demers of the Justice Department’s National Security Division. “The Department will continue to confront malicious nation state cyber activity with our unique tools and work with our fellow agencies and the family of norms abiding nations to do the same.”
“Today’s unsealed indictment expands upon the FBI’s 2018 charges for the unprecedented cyberattacks conducted by the North Korean regime,” said the FBI Deputy Director Paul Abbate. “The ongoing targeting, compromise, and cyber-enabled theft by North Korea from global victims was met with the outstanding, persistent investigative efforts of the FBI in close collaboration with U.S. and foreign partners. By arresting facilitators, seizing funds, and charging those responsible for the hacking conspiracy, the FBI continues to impose consequences and hold North Korea accountable for its/their criminal cyber activity.”
“The scope of the criminal conduct by the North Korean hackers was extensive and long-running, and the range of crimes they have committed is staggering,” said Acting U.S. Attorney Tracy L. Wilkison for the Central District of California. “The conduct detailed in the indictment are the acts of a criminal nation-state that has stopped at nothing to extract revenge and obtain money to prop up its regime.”
“This case is a particularly striking example of the growing alliance between officials within some national governments and highly sophisticated cyber-criminals,” said U.S. Secret Service Assistant Director Michael R. D’Ambrosio. “The individuals indicted today committed a truly unprecedented range of financial and cyber-crimes: from ransomware attacks and phishing campaigns, to digital bank heists and sophisticated money laundering operations. With victims strewn across the globe, this case shows yet again that the challenge of cybercrime is, and will continue to be, a struggle that can only be won through partnerships, perseverance, and a relentless focus on holding criminals accountable.”
The hacking indictment filed in the U.S. District Court in Los Angeles alleges that Jon Chang Hyok (전창혁), 31; Kim Il (김일), 27; and Park Jin Hyok (박진혁), 36, were members of units of the Reconnaissance General Bureau (RGB), a military intelligence agency of the Democratic People’s Republic of Korea (DPRK), which engaged in criminal hacking. These North Korean military hacking units are known by multiple names in the cybersecurity community, including Lazarus Group and Advanced Persistent Threat 38 (APT38). Park was previously charged in a criminal complaint unsealed in September 2018.
The indictment alleges a broad array of criminal cyber activities undertaken by the conspiracy, in the United States and abroad, for revenge or financial gain. The schemes alleged include: Cyberattacks on the Entertainment Industry, Cyber-Enabled Heists from Banks, Cyber-Enabled ATM Cash-Out Thefts, Ransomware and Cyber-Enabled Extortion, Creation and Deployment of Malicious Cryptocurrency Applications, Targeting of Cryptocurrency Companies and Theft of Cryptocurrency, Spear-Phishing Campaigns, Marine Chain Token and Initial Coin Offering, Money Launderer Charged in California and Georgia among others.