Duo sentenced to 14 years for Apple Phishing scheme

Two people have been sentenced to a total of 14 years in prison for conducting a Phishing campaign that targeted banking details. The criminals accused, Constanta Agrigoroaie, 23, and Radu Savoae, 28, used the stolen funds as a means to bring foreign criminals into the U.K.

Agrigoroaie was sentenced to six years for her role, while Savoae was handed eight years imprisonment for his role in the scheme by Snaresbrook Crown Court last week.

In all, the two stole £15,000 GBP ($25,560 USD) from victims in the U.K.

According to a police report, the two sent Phishing emails claiming to be from Apple to more than 150 people, informing them that their account had been compromised. The email included a link to a spoofed website, which asked for both personal and financial information.

The harvested information was then used to drain the victim's bank account, and the money was put towards travel arrangements for foreign criminals, who police say planned to conduct various criminal acts on London's transportation network (pick-pocketing) and other petty crimes.

The scam itself was discovered in February.

An inbound flight from Romania was intercepted by police at Luton Airport. Six passengers, who claimed they didn't know each other, were found to have tickets that were all purchased from the same computer.

Investigators later discovered the address where the tickets were purchased, and when police searched the residence in April, they discovered Agrigoroaie at a desk browsing European travel websites.

Moreover, she had a script open "showing a vast amount of personal details, including bankcard details with the full 16-digit number, expiry date and CVV number as well as their home addresses."

Savoae was later arrested as he attempted to enter the property with police present.

During the search, police found a number of items, including cash, fake Spanish and Romanian IDs, laptops, iPads, printers, and USBs among a vast quantity of blank credit cards.

Moreover, they discovered an embossing machine, hot foil tipping machine, and magnetic card reader -- all the things needed to manufacture cloned credit cards.

"This 'phishing' duo took advantage of many internet users and duped them into providing their personal information," said Roads and Transport Policing Command Chief Superintendent, Matt Bell, in a statement.

He added that the sentences are a "testament to how serious this type of crime is" and that they should stand as a deterrent to anyone who might consider undertaking similar acts.

Join the CSO newsletter!

Error: Please check your email address.

Tags AppleBPapplicationssoftwarecrime and punishmentphishing scamdata protection

More about Apple

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Steve Ragan

Latest Videos

  • 150x50

    CSO Webinar: Will your data protection strategy be enough when disaster strikes?

    Speakers: - Paul O’Connor, Engagement leader - Performance Audit Group, Victorian Auditor-General’s Office (VAGO) - Nigel Phair, Managing Director, Centre for Internet Safety - Joshua Stenhouse, Technical Evangelist, Zerto - Anthony Caruana, CSO MC & Moderator

    Play Video

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

More videos

Blog Posts

Market Place