THE National Bureau of Investigation (NBI) yesterday announced the arrest of five members of the “Mark Nagoyo Heist Group”, including two Nigerian nationals, for their involvement in the hacking of the country’s largest bank, BDO, which affected more than 700 customers late last year.
At a press briefing, NBI Officer-in-Charge (OIC) Eric Distor identified the suspects as Ifesinachi Chukwuemeka Peter Nwadi, Fountain Anaekwe, (alias Daddy Champ), Jherom Anthony Taupa, Ronelyn Panaligan and Clay Revillosa.
They were arrested in simultaneous operations in Pampanga last January 18 by operatives of the NBI’s Cybercrime Division (NBI-CCD)
Taupa, who is believed to be one of the masterminds of the Nagoyo Heist Group, was arrested in an entrapment conducted on January 18 in Floridablanca, Pampanga.
He was arrested while selling “scampage” or phishing website, particularly an imitation of Gcashwebpage to an NBI informant.
The NBI said based on its informant, Taupe modified the code in order to gather the log-in details of unwitting victims, who will access scampage in the belief that they were opening Gcash’s official portal.
The owner of the scampages would then be able to get into their victim’s Gcash accounts to steal their hard-earned funds.
“The buy-bust operation was then conducted wherein information and subject Taupa agreed on the price of P2,000 to be paid in cash direct as consideration for the scampage. The operation resulted in the arrest of subject Taupa after receiving the marked money. Taupa admitted that he was selling Gcash scampage which he stored in his computer,” the NBI reported.
On the same day, Anaekwe and Nwadi were arrested in Mabalacat, Pampanga after the NBI-CCD received information from a person who had transactions with the two foreigners.
The informant, according to the NBI, voluntarily appeared before the NBI-CCD to give information regarding several individuals believed to be members of the Mark Nogoyo Heist Group.
Based on initial reports, the group was able to access the accounts of BDO’s more than 700 customers while bypassing the one-time-pin (OTP) requirement and drained funds in those accounts.
Email confirmation for the bulk of the illegal transfers showed that they were made by a certain Mark Nagoyo.
“According to the informant, subjects were engaged in the business of providing access devices to anyone looking for options to cash out funds fraudulently obtained. These access devices range from bank accounts, crypto, wallets, or even point-of-sale terminals of otherwise legitimate merchants,” the NBI said.
“Further, when a certain Mark Froilan called the informant about money cashouts, the latter contacted ‘Daddy Champ’ who then said that he will provide the informant three different accounts so she an be transferring in it P10 million each, apparently referring to the funds from BDO alluded to by Mark Froilan,” it added.
Armed with the information provided by the informant, the NBI conducted an entrapment operation against the two Nigerians who were caught in the act of offering accounts for sale.
Also arrested in separate operations by NBI-CCD were Panaligan and Revillosa who were also involved in the BDO hacking as web developers and downloaders.
The suspects had been subjected to inquest proceedings before the Department of Justice (DOJ) for trafficking in unauthorized access devices under Section 9 of R.A. 8484 or the Access Devices Regulation Act of 1998 and for misuse of devices under Section 4(a)(5)(i)(aa) of R.A. 10175, also known as the Cybercrime Prevention Act of 2012.
Image credits: CNN PHL