Russian Hacker Senakh Admits to Global Botnet Fraud

MINNEAPOLIS, MN – A Russian citizen is facing the music after admitting his central role in a sprawling international cybercrime ring. Maxim Senakh, 41, of Velikii Novgorod, Russia, pleaded guilty today to conspiracy to violate the Computer Fraud and Abuse Act and to commit wire fraud, effectively confessing to building and exploiting a global network of compromised servers.

The Justice Department says Senakh and his co-conspirators unleashed malware known as Ebury onto tens of thousands of computer servers worldwide, including thousands right here in the United States. This wasn’t just a nuisance; it was a carefully constructed engine for generating fraudulent revenue. The Ebury botnet harvested login credentials, giving Senakh and his crew unfettered access to a vast army of infected machines.

According to court documents, the operation revolved around click fraud and spam email schemes. By manipulating internet traffic through the botnet, the criminals raked in millions of dollars in illegitimate revenue. Senakh wasn’t just a programmer; he was actively involved in the infrastructure, creating accounts with domain registrars to bolster the botnet and personally profiting from the illicit traffic.

The FBI Minneapolis Field Office led the investigation, a probe that spanned continents and required international cooperation. Senakh was originally indicted on January 13, 2015, but evaded U.S. authorities for years. He was finally apprehended by Finnish authorities and extradited to the United States to answer for his crimes. Assistant U.S. Attorney Kevin Ueland will be prosecuting the case alongside Senior Counsels Aaron Cooper and Benjamin Fitzpatrick of the Criminal Division’s Computer Crime and Intellectual Property Section.

The Department of Justice specifically thanked the government of Finland, the German Bundeskriminalamt (BKA), CERT-Bund, and the cyber security firm ESET for their crucial assistance in bringing Senakh to justice. The Office of International Affairs also played a significant role in navigating the complexities of extradition and international law enforcement.

Senakh’s sentencing is scheduled for August 3, 2017. While the exact penalty remains to be seen, the guilty plea signals a significant victory for federal investigators battling the ever-growing threat of international cybercrime. This case serves as a stark reminder that no corner of the globe is beyond the reach of U.S. law enforcement when it comes to digital fraud.