The Directorate for the Investigation of Organized Crime and Terrorism has accused a person of having illegally accessed multiple email accounts belonging to employees of eBay. The accused, by the name of Vlad Constantin Duiceulescu, cost the company over two million dollars between 2005 and 2007. As of 5 April 2007, Duiculescu is accused under penal code 16/1/2003 for illegally accessing a computer system, illegally modifying information, and restricting access etc etc.

On 19 April 2005, the United States Secret Service … something about him trying to sell data.

Personal data, such as credit card numbers, expiration dates, PIN numbers, names… etc

The police were able to identify Vladuz by IP address, and at 5:00 AM entered his apartment by force. Trying to avoid compromising evidence, the young man threw three laptops out the window.

The authorities collected the pieces of the computers to reassemble them, in the hopes of recovering the data.

….

Magistrates of the Bucharest court issued a 29-day preventive arrest warrant for Vlad D, the Romanian hacker called the “Cyberspace Terrorist.” He was retained under the accusation that he stole two million dollars from the accounts of the online commerce site, eBay.

Put under surveillance three years ago by the Secret Service, Vlad is (the) Romanian who at just 17 years of age succeeded in (?) officials of an entire company. He operated under the name “Vladuz”, illegally accessing accounts of many eBay users between 2005-2007. Sought by the American authorities, the hacker was caught after he tried to sell to employees of eBay the program which he had used to hack the site. Company officials sought the assistance of the FBI.

Prosecutors state that the young thief stole identification information of eBay employees. (Untranslated sentence). The last attack was in March 2007. In the last two years, the international press named him the “Cyberspace Terrorist.” The Americans knew he was in Romania, but did not know exactly who he was. Prosecturs succeeded in identifying him and learned he was a 20-year-old youth from the town of Drumul Taberei.

(Not sure, think it says they filed charges against him a year ago). He faces 15 years in prison for committing computer crimes. The case is not unique. The Italian and American press have reported for years about a multitude of Internet crimes in which Romanian citizens are implicated. The value of the reported crimes has risen to over one million Euros.

….

New detail: laptops were thrown from the 5th floor.

Later in the article, it talks about a login spoofing kit he developed. They were looking at 274 possible spoofing sites initially, and narrowed it to 7 (not sure why).

If I understand correctly, eBay helped in the capture by having an employee secretly contact Vladuz to buy one of his site spoofing kits, and after they got down to payment details as to where to send the money, contacted the Secret Service. and this helped track him to the apartment in Bucharest.

They mention 1.2 million in losses related to the compromised accounts from the phishing.

He was advertising phishing sites for sale, and they give a list of email contact addresses he was using.

Later, Vladuz had several Skype conversations with an eBay employee, and through this was able to hijack two employee accounts and was able to access the internal servers remotely (so we’d not be talking about eBay logins, but probably a VPN, or Virtual Private Network so employees could work from home)

Sounds like he tried to get eBay to employ him or pay him on some level related to the remote access… typical young hacker stuff, I bust into your computers, please hire me as your security consultant. (Language is getting a little technical here).

He then posted some information that cost eBay $500,000 in damage control.

They then mention one more employee account accessed, and 1,111 eBay accounts accessed.

BIG THANKS TO EBAY MEMBER WHO PROVIDED THIS TRANSLATION HERE
http://forums.ebay.com/db2/thread.jspa?threadID=2000554111&start=0
l