Updated: New US Treasury sanctions on Russian hackers aim for Monero

Published at: Sept. 16, 2020

Per its Wednesday additions to its list of sanctioned individuals, the United States Treasury Department is targeting Monero (XMR) addresses.

Russian nationals Dmitriy Karasavidi and Danil Potekhin have become the newest names on the specially designated nationals list. According to the Treasury’s announcement on the subject, the two engineered an elaborate phishing campaign targeting U.S. citizens in 2017 and 2018.

Both parties had a number of cryptocurrency addresses including Bitcoin (BTC) and Ether (ETH), as well as Zcash (ZEC) and Litecoin (LTC). Surprisingly, Karasavidi’s information includes a Monero address: 5be5543ff73456ab9f2d207887e2af87322c651ea1a873c5b25b7ffae456c320.

Given Monero's famous built-in privacy features, this is a huge step for sanctions. Unfortunately for the Treasury, that XMR "address" is not an address at all, but rather a payment ID. 

Unlike Bitcoin, which allows anyone to view the contents of a wallet and trace any transactions to or from it indefinitely along the blockchain, Monero's payment IDs hide wallet address data. Below, you can see the historical transactions associated with that payment ID.

Source: Monero Blocks

Monero has in fact been moving away from payment IDs in favor of the more private subaddresses. At this point, it's easy not to use payment IDs, even if you happened to be the owner of the wallet behind the above transaction.

Though the Treasury has been updating its crypto capabilities, including last week targeting the crypto wallets of several Russian nationals allegedly involved in election interference and government-sponsored misinformation campaigns, this is the first time sanctions have attempted to single out an XMR address. For the time being, it doesn't look like they know what they are doing. 

The investigation is the result of a now-familiar collaboration between the Treasury, the Department of Homeland Security and the Department of Justice. A criminal complaint has been opened charging the alleged hackers. Regarding the announcement, Treasury Secretary Steven Mnuchin said:

"The Treasury Department will continue to use our authorities to target cybercriminals and remains committed to the safe and secure use of emerging technologies in the financial sector."

Crypto analytics firms that contract with the U.S. government such as Ciphertrace have been busy developing Monero-tracing tools. The Internal Revenue Service announced a bounty for anyone who can “crack” the infamously untraceable token.

How exactly did the Treasury isolate this payment ID? It is likely that they got that information from an exchange. But the question remains: How much further will they get with Monero?

Update Sept. 17: This article has been updated to reflect the fact that the XMR "address" in the Treasury's announcement is actually a payment ID.

Tags
Related Posts
Law Decoded: Governments vs. blockchain privacy, Sept. 4-11
Every Friday, Law Decoded delivers analysis on the week’s critical stories in the realms of policy, regulation and law. Editor’s note One of the most persistent myths about Bitcoin is its supposed anonymity. More properly termed pseudonymity, BTC wallets are permanently tied to their public keys. Most of you know that. But it took government investigators years of trying to corral Bitcoin transactions on dark web marketplaces like the Silk Road to figure that out. Now, however, blockchain analysis is a growing industry, catering to a range of clients including many of the most shadowy of government agencies. This was …
Regulation / Sept. 11, 2020
Digital intelligence must overcome challenges to solving crypto crimes
While the value of cryptocurrencies has varied wildly in the last year, this has not diminished crypto’s attractiveness to criminals. Many of them are moving their illegal activities underground and outside the view of law enforcement. Because of the public nature of most blockchains, however, this rapid movement shouldn’t be a major concern to law enforcement agencies. With the right tools and training, following the proceeds of crypto-enabled crime is actually not as difficult as it may seem. However, intelligence agencies must have a cryptocurrency investigation plan that includes the right tools to lawfully collect digital evidence and the properly …
Technology / Aug. 20, 2021
Gemini crypto exchange adds shielded withdrawals for privacy coin Zcash
Gemini, a cryptocurrency exchange founded by the Winklevoss twins, aims to improve user privacy with a major privacy token, Zcash (ZEC). Starting Sept. 29, Gemini will support shielded withdrawals of ZEC, which allows users to hide their transaction data. Gemini representatives said that the new feature is the “first time shielded ZEC withdrawals are available on a regulated exchange.” The new option comes in line with Gemini’s mission to strengthen financial privacy and “empower the individual through crypto,” Gemini executives said. Launched in 2016, Zcash is a major privacy-focused cryptocurrency, enabling two user privacy levels through two types of addresses …
Regulation / Sept. 29, 2020
XMR workgroup says IRS should study Monero — not try to break it
The United States Internal Revenue Service has better ways to spend taxpayer dollars than offering bounties to break Monero’s (XMR) privacy, a Monero working group says. After the IRS announced it is offering up to $625,000 to anyone who can break Monero, a major Monero-focused workgroup expressed their take on the matter. A spokesperson for Monero Outreach — an independent workgroup focused on XMR awareness and education — told Cointelegraph that the IRS should learn how Monero actually works instead. Monero Outreach’s representative emphasized that the crypto’s features in fact provide users with a certain level of transparency, stating: “$625,000 …
Regulation / Sept. 17, 2020
Tornado Cash is the latest chapter in the war against encryption
The sanctions imposed by the United States government on Tornado Cash have reignited a public debate on privacy. For many in the relatively young crypto community, such an intervention by the federal government seems groundbreaking. However, tussles between the private sector and the state on the issue of privacy are far from new and can provide compelling insights on what we might expect next for privacy in the crypto industry. In the 1990s, Phil Zimmermann released Pretty Good Privacy (PGP), one of the first openly available public-key cryptography applications that featured end-to-end (E2E) encryption. Zimmerman’s creation prompted a criminal investigation …
Technology / Sept. 21, 2022