This case involves a member of the cyber organized criminal group “The Dark Overlord” (TDO), an organization that was known for their ransom and extortion scams. Beginning in 2016, the defendant was involved in a conspiracy that encompassed hacking several organizations in health, entertainment, finance, commercial, real estate, and transportation, stealing personal information from the systems they hacked, including for instance medical records, and then seeking ransom from the targets. Companies would usually have to pay a ransom of between USED 75,000 and 350,000 in bitcoin. The defendant’s role in the conspiracy was creating, validating, and maintaining communication, payment, and virtual private network accounts that were, inter alia, used to send threatening and extortionate messages to the victimized companies within the Eastern District of Missouri, where the defendant was ultimately tried.
The defendant was indicted by a federal grand jury for conspiracy, two counts of aggravated theft, and three counts of threatening to damage a protected computer on 8 November 2017. The U.S. subsequently requested the extradition of the defendant from the UK. The defendant was ultimately extradited in late 2019 and arraigned before U.S. Magistrate Judge Shirley Padmore Mensah on 18 December 2019, where he pleaded not guilty. On 21 September 2020, the defendant eventually pleaded guilty to conspiracy and was sentenced to five years’ imprisonment and ordered to pay USD 1,467,048 in restitution.
United Kingdom of Great Britain and Northern IrelandUnited States of AmericaUnited Kingdom of Great Britain and Northern IrelandUnited States of AmericaU.S. District Court for the Eastern District of Missouri
After being extraditied from the United Kingdom to the United States, the defendant was arraigned before U.S. Magistrate Judge Shirley Padmore Mensah on 18 December 2019, where he pleaded not guilty at first. On 21 September 2020, the defendant eventually pleaded guilty to conspiracy and was sentenced to five years’ imprisonment and ordered to pay USD 1,467,048 in restitution.
18 U.S.C. § 371
Conspiracy to commit offense or to defraud United States
18 U.S.C. § 1028A
Aggravated Identity Theft (two counts)
18 U.S.C. § 1030
The defendant was charged with three counts of threatening to damage a protected computer contrary to 18 U.S.C. § 1030(a)(7)(C).
Fraud and related activity in connection with computers (three counts)
U.S. District Court for the Eastern District of Missouri
United States of America v. Wyatt, No. 4:17-cr-00522-RLW-SPM (E.D. Mo. Nov. 8, 2017)
Department of Justice, Office of Public Affairs, "Member of “The Dark Overlord” Hacking Group Extradited From United Kingdom to Face Charges in St. Louis," 18 December 2019.
Department of Justice, Office of Public Affairs, "UK National Sentenced to Prison for Role in “The Dark Overlord” Hacking Group," 21 September 2020.
This case highlights the importance of international cooperation, in particular extradition, in effectively prosecuting cyber organized crime. The inherently transnational nature of cybercrime has enabled members of criminal groups to operate globally and commit offences while physically located outside the targeted country. In this case, the defendant, a UK national, was located outside the U.S. conspiring with other members of TOD to commit aggravated identity theft and computer fraud, targeting – inter alia – companies seated in the St. Louis area. The international cooperation between British and U.S. law enforcement authorities, in particular the FBI, the Department of Justice and the Metropolitan Police Service, during the investigation and extradition, has facilitated the conviction of the defendant in the United States.