Slillpp, the largest online marketplace of stolen login credentials, has been seized by a by law enforcement. It was multinational operation led by the Department of Justice (DOJ). United States, German, Dutch, and Romanian law enforcement agencies seized servers used to host Slilpp’s marketplace infrastructure and domain names.
Marketplace websites have been replaced with seizure banners on the clear web and with an onsite error on the dark web.
A number of prosecutors and investigators from around the world worked with the FBI during the international operation.It was the Netherlands’ National High Tech Crime Unit, Germany’s Bundeskriminalamt, and Romania’s Directorate for Investigating Organized Crime and Terrorism that were involved in the take-down of Slilpp.
In the criminal underground, Slilpp is the largest market for compromised accounts It was the marketplace which provided the administrators with millions of dollars in lucrative illicit profits.” Since 2012, the site has been used by cybercriminals to sell and purchase stolen log in credentials for banks, online payment services, mobile phones, retailers, and others.
Credentials purchased from Slilpp vendors were used to carry out unauthorized transactions (e.g., wire transfers), leading to the arrest and criminal charges of more than a dozen individuals linked to the Slilpp marketplace.
Based on a limited number of victim reports, the stolen login credentials sold over LinkedIn caused $200 million in losses in the United States, according to the affidavit. The full impact of Slilpp is not yet known,” the DOJ said.
Slilpp vendors sold 80 million stolen login credentials belonging to over 1,400 companies, including many high-profile ones, before the marketplace was shut down. Among other things, the Slilpp marketplace enabled buyers to steal the identities of American victims, according to Acting Assistant Attorney General Nicholas L. McQuaid at the Justice Department’s Criminal Division.
Cybercriminals continue to get credentials from other large marketplaces even as Slilpp is gone. Using a database of UAS, Advanced Intel researchers gathered credentials for 1.3 million Windows Remote Desktop servers, over a three-year period. According to Ultimate Anonymity Services (UAS), 23,706 accounts were available for sale on this hacker marketplace in April.
Source: DOJ Press Release