The identities of a third of the living holders of the US government’s highest and most prestigious military decoration were stolen and used to purchase goods from military exchanges. The United States Secret Service “is currently investigating a matter in which the personally identifiable information (PII) of 22 of 75 living Congressional Medal of Honor recipients was used to create fraudulent lines of credit at the Army and Air Force Exchange Service (AAFES) in order to purchase items utilizing the newly created fraudulent lines of credit, all in violation of 18 U.S.C. § 1029 (access device fraud).” The individuals affected have not been named in the affadavit.
A threat actor used the stolen personal information to purchase items such as luxury watches and Apple products. It has been reported that these goods were then shipped to various reshipping companies, including UNEOL post and sent to various addresses in Russia. The threat actor completed approximately 50 separate fraudulent transactions, netting $54,530.92.
