A Romanian computer hacker was sentenced to serve three years in prison for an international identity theft scheme. On September 22, the multi-year case against the hacker who breached security companies and medical offices has been finalized.
Mircea-Ilie Ispasoiu, the prosecuted hacker, had been operating since August 2011, according to indictment papers. In 2014, the US indicted Ispasoiu with two counts of wire fraud and two counts of unauthorized computer access. He was also charged with two counts of unauthorized computer access that caused damage. Lastly, his usage of the compromised data resulted in three counts of aggravated identity theft.
Ispasoiu was employed as a computer systems administrator at a large financial institution in Romania, court documents revealed. While working as a sysadmin, Ispasoiu began hacking organizations, companies, and private individuals. Between August 2011 and February 2014, the hacker breached database of retailers and medical offices.
After compromising the network of a company he targeted, Ispasoiu would deploy remote access trojans (RAT) to vulnerable computers. When the RAT successfully infected a sufficient number of machines it would then automatically grab system login credentials. The credentials were subsequently used to access sensitive information