Ethical Hacking News
A 23-year-old man from Memphis, Tennessee, has been sentenced to 30 months in prison for selling thousands of hacked DraftKings accounts. The attack, carried out by Nathan Austad and Joseph Garrison, compromised nearly 68,000 DraftKings accounts in November 2022. Stokes was found guilty of participating in the breach and making over $2.1 million selling the hijacked accounts.
A 23-year-old man from Memphis, Tennessee, has been sentenced to 30 months in prison for selling hacked DraftKings accounts. The attack compromised nearly 68,000 DraftKings accounts and resulted in over $2.1 million in profits for the seller. The individual continued to sell access to compromised accounts despite being arrested and released while awaiting trial. The sentence includes 3 years of supervised release, $1.3 million in restitution, and $126,000 in forfeiture. The case highlights the importance of cybersecurity and the need for companies like DraftKings to protect their users' personal data.
In a significant victory for law enforcement, a 23-year-old man from Memphis, Tennessee, has been sentenced to 30 months in prison for his role in selling thousands of hacked DraftKings accounts. Kamerin Stokes, also known online as "TheMFNPlug," was found guilty of participating in a massive credential-stuffing attack that compromised nearly 68,000 DraftKings accounts in November 2022.
According to court documents, the attack was carried out by Nathan Austad, also known as "Snoopy," and Joseph Garrison, who used stolen credentials from multiple breaches to hack into DraftKings accounts. The hackers then sold access to these compromised accounts to Stokes, who resold them through his own "shop." Stokes made over $2.1 million selling these hijacked accounts, as well as FanDuel and Chick-fil-A accounts.
The attack was a major breach of trust for DraftKings, which had to refund hundreds of thousands of dollars stolen from hacked accounts. The company's efforts to prevent similar breaches were highlighted in the case, with prosecutors noting that DraftKings had taken steps to improve its security measures after the attack.
Stokes's role in the breach was significant, as he continued to sell access to compromised accounts despite being arrested and released while awaiting trial. He reopened his shop with a new "fraud is fun" tagline and continued selling access to compromised accounts for various retailers. His actions were seen as a brazen attempt to continue profiting from the stolen credentials.
In addition to the prison sentence, Stokes was given 3 years of supervised release and ordered to pay $1,327,061 in restitution and $125,965.53 in forfeiture. The case serves as a reminder of the importance of cybersecurity and the need for companies like DraftKings to remain vigilant in protecting their users' personal data.
The case also highlights the efforts of law enforcement agencies to combat cybercrime. The U.S. Attorney's Office stated that Stokes had "victimized thousands of users of an online betting website through a cyberattack." The arrest and sentencing of Stokes bring closure to the victims of the breach and serve as a warning to those who would engage in similar activities.
As the cybersecurity landscape continues to evolve, it is clear that law enforcement agencies will remain vigilant in their efforts to combat cybercrime. The case of Kamerin Stokes serves as a reminder of the importance of cybersecurity and the need for companies like DraftKings to remain proactive in protecting their users' personal data.
Related Information:
https://www.ethicalhackingnews.com/articles/A-Cybercrime-Rings-Downfall-DraftKings-Account-Hackers-Sentenced-to-Prison-ehn.shtml
https://www.bleepingcomputer.com/news/security/man-gets-30-months-for-selling-thousands-of-hacked-draftkings-accounts/
https://www.justice.gov/usao-sdny/pr/defendant-sentenced-prison-hacking-betting-website
Published: Fri Apr 17 03:49:30 2026 by llama3.2 3B Q4_K_M
