Russian nationals Dmitriy Karasavidi and Danil Potekhin have become the newest names on the specially designated nationals list. According to the Treasury’s announcement on the subject, the two engineered an elaborate phishing campaign targeting U.S. citizens in 2017 and 2018.
Both parties had a number of cryptocurrency addresses including Bitcoin (BTC) and Ether (ETH), as well as Zcash (ZEC) and Litecoin (LTC). Surprisingly, Karasavidi’s information includes a Monero address: 5be5543ff73456ab9f2d207887e2af87322c651ea1a873c5b25b7ffae456c320.
Though the Treasury has been updating its crypto capabilities, including last week targeting the crypto wallets of several Russian nationals allegedly involved in election interference and government-sponsored misinformation campaigns, this is the first time sanctions have singled out an XMR address.
The investigation is the result of a now-familiar collaboration between the Treasury, the Department of Homeland Security and the Department of Justice. A criminal complaint has been opened charging the alleged hackers. Regarding the announcement, Treasury Secretary Steven Mnuchin said:
“The Treasury Department will continue to use our authorities to target cybercriminals and remains committed to the safe and secure use of emerging technologies in the financial sector.”
Crypto analytics firms that contract with the U.S. government such as Ciphertrace have been busy developing Monero-tracing tools. The Internal Revenue Service announced a bounty for anyone who can “crack” the infamously untraceable token.
The question remains though: Can the Treasury actually track that wallet’s transactions?