A Ukrainian man has entered a guilty plea in a federal court in Austin today to conspiracy to commit computer intrusion in connection with operating the "Raccoon Infostealer" malware. The defendant, 28-year-old Mark Sokolovsky, admitted to running a malware-as-a-service scheme, renting out the data theft tool for about $200 a month, payable in cryptocurrency, according to the U.S. Attorney's Office, Western District of Texas. This allowed others to use the malware to infiltrate and pilfer personal data from victims' computers through deceptive means like email phishing scams, nabbing sensitive information such as login details and financial records.
The arrest and subsequent plea follow a collaborative international law enforcement effort which included the dismantlement of the Raccoon Infostealer's infrastructure in March 2022, operations supported by the FBI and counterparts in Italy and the Netherlands, with the Department of Justice detailing that Sokolovsky's illicit actions extended to selling stolen data on cybercrime forums, using it to further financial crimes or exchanging it for other nefarious services.
Following his extradition from the Netherlands to the U.S. in February, Sokolovsky faced indictment on charges related to fraud, money laundering, and aggravated identity theft, with the guilty plea including an agreement to forfeit $23,975 and pay restitution of at least $910,844.61. The case is being prosecuted by Assistant U.S. Attorney G. Karthik Srinivasan and investigated by the FBI’s Austin Cyber Task Force alongside other state and federal agencies including the Department of the Army Criminal Investigation Division, the Austin Police Department, and the Texas Department of Public Safety.
U.S. Attorney Jaime Esparza from the Western District of Texas underscored the dangers of cybercrime and the importance of bringing perpetrators to justice; stating that Sokolovsky’s guilty plea the significant repercussions for those engaged in such criminal activities. Victims of the Raccoon Infostealer malware, seeking further information are directed by federal authorities to visit a dedicated assistance page. Interested parties who've been compromised by this malicious software can find more information on obtaining assistance at www.justice.gov/usao-wdtx/victim-assistance-raccoon-infostealer.
