A federal judge sentenced 37-year-old Andrei Tyurin of Moscow in January to 12 years in prison for hacking into financial institutions such as J.P. Morgan, Chase Bank, and E*Trade.
In addition to his prison term, Tyurin must serve three years of supervised release and repay the more than $19 million he stole.
According to a news release from the U.S. Attorney for the Southern District of New York, Tyurin pleaded guilty last September to several conspiracy counts related to computer intrusion, wire fraud, bank fraud, and illegal online gambling offenses.
Among his victims were J.P. Morgan Chase Bank, E*Trade, Scottrade, and the Wall Street Journal. Tyurin’s hacking stole the personal information of more than 100 million people, most of whom were customers of J.P. Morgan Chase.
The financial industry attacks occurred between 2012 and 2015, the Manhattan federal prosecutor said in the release. Tyurin participated in additional criminal cyberattacks between 2007 and mid-2015 to aid partners in securities fraud schemes, the prosecutor’s news release said.
That fraud included deceptive email marketing to boost individual stocks fraudulently, the prosecutor’s news release said. The partners, including an Israeli man, also have been arrested and extradited to the U.S., but not all have come to trial yet.
Tyurin has been in U.S. Custody since the country of Georgia extradited him in 2018.
TASS, the Russian news agency, reported that Tyurin contracted COVID-19 while in jail awaiting sentencing. TASS also said Tyurin would be deported back to Russia, where he has a wife and daughter, once he completes his sentence.
Tyurin’s defense attorney told TASS that Tyurin had stopped engaging in illegal hacking activities even before his arrest and was also “on the way to rectification” when caught in 2018.
Tyurin has a restitution-related hearing set for April 6.