The U.S. Attorney’s Office for the Middle District of Florida, Tampa Division, announces the conclusion of a transnational cybercrime investigation involving the xDedic Marketplace. xDedic, operating on the dark web, illicitly sold login credentials and personally identifiable information, leading to various criminal activities such as tax fraud and ransomware attacks. The administrators of xDedic demonstrated outstanding operational security by managing the website through a extensively dispersed global network. They employed cryptocurrency to conceal the whereabouts of the Marketplace’s core servers, as well as the identities of administrators, sellers, and buyers.
The marketplace offered over 700,000 compromised servers for sale, impacting global entities across industries. In 2019, the U.S. Attorney’s Office seized xDedic’s domain names, dismantling its infrastructure. Following the takedown, investigations and charges were brought against individuals involved in xDedic’s operations at different levels, including administrators, server sellers, and buyers.