Sunday, November 10, 2024
HomeCyber Security NewsSystem Admin Pleads Guilty for Selling Pirated Business Phone Software Licenses

System Admin Pleads Guilty for Selling Pirated Business Phone Software Licenses

Published on

Malware protection

For taking part in a large international scheme to earn millions of dollars by selling pirated business telephone system software licenses, a computer system admin and his spouse pled guilty.

Software licenses with a retail value of over $88 million are said to have been sold as a result of the whole operation.

The U.S. Department of Justice reported that in a scheme that involved creating and selling fake Avaya Direct International (ADI) software licenses, Brad Pearce, 48, and Dusti O.

- Advertisement - SIEM as a Service

Pearce, 45, of Tuttle, Oklahoma, allegedly teamed up with Jason M. Hines, aka Joe Brown, Chad Johnson, and Justin Albaum, 43, of Caldwell, New Jersey, to commit wire fraud.

The ADI software licenses were then used to unlock the capabilities of a popular telephone system used by thousands of businesses worldwide. Since then, the ADI software licensing system has been shut down.

Document
FREE Demo

Deploy Advanced AI-Powered Email Security Solution

Implementing AI-Powered Email security solutions “Trustifi” can secure your business from today’s most dangerous email threats, such as Email Tracking, Blocking, Modifying, Phishing, Account Take Over, Business Email Compromise, Malware & Ransomware

Massive Scheme of Pirated Software Licenses

Avaya Holdings Corporation, a worldwide corporate communications firm headquartered in California, sold an IP Office product. This phone system is utilized by several midrange and small enterprises both domestically and internationally. 

Customers had to buy software licenses from an authorized Avaya distributor or reseller to enable extra features of IP Office, such as voicemail or telephones, created by Avaya.

Avaya utilized software license keys to restrict access to its copyright-protected software and ensure that only customers who had paid for it could use it.

Long-time Avaya customer service employee Brad Pearce created tens of thousands of ADI software license keys using his system administrator rights, which he then sold to Hines and other clients, who then sold them to resellers and end users worldwide. 

Each Avaya software license had a selling value that ranged from less than $100 to thousands of dollars. For the unlawful business, Dusti Pearce was in charge of accounting.

Hines, who purchased more than 55% of the stolen licenses, was by far the Pearces’ biggest client and had a big impact on how the program was run.

Additionally, Brad Pearce used his system administrator rights to access former Avaya workers’ accounts and steal their license keys for the ADI software.

“Furthermore, he used these privileges to alter information about the accounts to conceal the fact that he was generating ADI license keys, preventing Avaya from discovering the fraud scheme for many years,” DOJ said.

The Pearces moved their illicit profits from many bank accounts to numerous additional investment and bank accounts using a PayPal account that was established under a fictitious name to conceal the kind and source of the funds. 

They also bought a lot of gold bullion and other expensive things.

Sentencing

Dusti and Brad Pearce admitted to conspiring to conduct wire fraud. The maximum sentence for both of them is 20 years in jail. 

According to the plea deal, Brad and Dusti Pearce must give up a car, cash, gold, silver, rare coins, cryptocurrencies, and a money judgment of at least $4 million. They must also compensate their victims in full.

Keep informed about the latest Cyber Security News by following us on Google NewsLinkedinTwitter, and Facebook.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

CISA Warns of Critical Palo Alto Networks Vulnerability Exploited in Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns organizations of a critical vulnerability...

Cisco Desk Phone Series Vulnerability Lets Remote Attacker Access Sensitive Information

A significant vulnerability (CVE-2024-20445) has been discovered in Cisco Desk Phone 9800 Series, IP...

Cisco Flaw Let Attackers Run Command as Root User

A critical vulnerability has been discovered in Cisco Unified Industrial Wireless Software, which affects...

Researchers Detailed Credential Abuse Cycle

The United States Department of Justice has unsealed an indictment against Anonymous Sudan, a...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

CISA Warns of Critical Palo Alto Networks Vulnerability Exploited in Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns organizations of a critical vulnerability...

Cisco Desk Phone Series Vulnerability Lets Remote Attacker Access Sensitive Information

A significant vulnerability (CVE-2024-20445) has been discovered in Cisco Desk Phone 9800 Series, IP...

Cisco Flaw Let Attackers Run Command as Root User

A critical vulnerability has been discovered in Cisco Unified Industrial Wireless Software, which affects...