:

UKRAINE BUSTS 18-YEAR-OLD BEHIND 28,000 ACCOUNT THEFT

AI DESK1 MIN READ
THU, MAY 21, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

Ukrainian cyberpolice and U.S. law enforcement have identified an 18-year-old from Odesa operating an infostealer malware campaign that compromised 28,000 user accounts from a California-based online store.

The suspect ran a malware operation targeting customers of the retailer, stealing login credentials and personal data through infostealer malware. The investigation represents ongoing collaboration between Ukrainian authorities and U.S. law enforcement in combating cybercrime. Infostealer malware typically harvests login credentials, financial information, and personal data from infected devices. The stolen accounts from this operation expose victims to identity theft, fraudulent transactions, and further targeted attacks. The case underscores the persistent threat posed by individual cybercriminals operating from Eastern Europe, where internet infrastructure and cryptocurrency adoption facilitate remote criminal operations. Ukrainian cyberpolice have intensified efforts to identify and prosecute local threat actors in recent years. Authorities did not disclose whether the suspect has been apprehended or details regarding potential charges.

■ SOURCES

Bleeping Computer

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.

4H AGOIndustry Desk

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.

4H AGOSecurity Desk

Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.

7H AGOAI Desk

A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.

9H AGOIndustry Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.