Apr 25, 2024NewsroomCryptocurrency / Cybercrime

Crypto Mixer Samourai

The U.S. Department of Justice (DoJ) on Wednesday announced the arrest of two co-founders of a cryptocurrency mixer called Samourai and seized the service for allegedly facilitating over $2 billion in illegal transactions and for laundering more than $100 million in criminal proceeds.

To that end, Keonne Rodriguez, 35, and William Lonergan Hill, 65, have been charged with conspiracy to commit money laundering and conspiracy to operate an unlicensed money transmitting business from 2015 through February 2024. Rodriguez and Hill face a maximum sentence of 25 years in prison each.

Rodriguez, the CEO of the company, and CTO Hill intentionally designed Samourai to help “criminals to engage in large-scale money laundering and sanctions evasion,” while ostensibly marketing as a privacy-oriented service, the DoJ said.

Samourai laundered money from illegal dark web marketplaces, including Silk Road and Hydra, as well as spear-phishing schemes and scams aimed at defrauding multiple decentralized finance protocols.

Cybersecurity

The operation, which also involved law enforcement agencies from Iceland and Portugal, along with Europol, saw its digital infrastructure confiscated and its Android app pulled from the Google Play Store in the U.S. Hill, who was apprehended in Portugal, is awaiting his extradition to the U.S. Rodriguez was taken into custody in Pennsylvania.

Samourai offered a cryptocurrency mixing service known as Whirlpool to help users conceal the cryptocurrency transaction trail, in addition to incorporating an “exclusive transaction type” called Ricochet Send that made it possible to add intermediate hops when sending cryptocurrency from one address to another.

Whirlpool was advertised as a way to “mathematically disassociate the ownership of inputs to outputs in a given bitcoin transaction,” which they claimed increases the privacy of the users involved, protects against financial surveillance, and improves the fungibility of the Bitcoin network.

“Ricochet defends against bitcoin blacklists by adding additional decoy transactions between the initial send and eventual recipient,” according to the official documentation. “You should consider using Ricochet when sending to Bitcoin Exchanges, and companies that are known to close accounts for flimsy reasons.”

The feature is engineered to prevent law enforcement and/or cryptocurrency exchanges from recognizing that a particular batch of cryptocurrency originated from criminal activity, the DoJ alleged.

Cybersecurity

Besides openly courting users (e.g., Russian oligarchs) to circumvent sanctions and launder criminal proceeds through Samourai on their X (formerly Twitter) account, the defendants have also been found transmitting to investors marketing materials that described how its user base was intended to include online gamblers and criminals who need the anonymity to conduct their illegal activities.

“Rodriguez and Hill acknowledge that its revenues will be derived from ‘Dark/Grey Market participants’ seeking to ‘swap their bitcoins with multiple parties’ to avoid detection,” the DoJ said.

The arrests come weeks after a former security engineer named Shakeeb Ahmed was sentenced to three years in prison in the U.S. for charges relating to hacking two decentralized cryptocurrency exchanges in July 2022 and stealing over $12.3 million, which were then laundered using Samourai Whirlpool.

Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.

Source: thehackernews.com/