InfoSecBulletin Cybersecurity for mankind
A federal grand jury has indicted a Bangladeshi national for operating online marketplaces that sold fake identity document templates to customers worldwide, prosecutors announced today.
Zahid Hasan, 29, of Dhaka, Bangladesh, faces nine federal charges for running websites that sold digital templates of fraudulent passports, social security cards, and driver’s licenses.
LastPass says hackers stole customer data via Klue, supply chain breach
New Apple Exploit Bypasses Boot Defenses, Possibly Affects Millions of iPhones Worldwide
India’s Tata Electronics hit by cyber breach: Hacker target 630 GB record
Anthropic’s Mythos reportedly broke NSA classified systems in hours
OpenAI New Method “Deployment Simulation” Predicts AI Risks Before Deployment
AryStinger botnet infected thousands of D-Link routers globally
Hacker suspected of sending alerts across Brazil
CyberSentinel AI features 33 security tools like Nmap, SQLMap, and ZAP, utilizing Claude and GPT
Barracuda hosts Dhaka roundtable on cyber resilience
CISA Alerts Fortinet Users as FortiBleed Affects 86,644 FortiGate Devices
The indictment alleges Hasan operated “TechTreek” and “EGiftCardStoreBD” from 2021 through 2025, generating more than $2.9 million from over 1,400 international customers.
Court documents reveal the sophisticated operation that offered high-quality forgeries at low prices.
Customers could purchase a U.S. passport template for $12, a social security card for $9.37, and a Montana driver’s license for $14.05. The websites accepted Bitcoin and other virtual currencies, making transactions difficult to trace.
The fake documents served as building blocks for broader criminal activities. Buyers used them to create fraudulent accounts at banks, payment processors, social media platforms, and cryptocurrency exchanges.
This enabled identity theft, financial fraud, and other cybercrimes across multiple jurisdictions.
The scheme attracted law enforcement attention when Hasan allegedly sold templates to a Bozeman, Montana resident on May 13, 2025.
This transaction triggered a joint investigation by the FBI’s Billings Division and Salt Lake City Cyber Task Force, working alongside FBI International Operations and the Dhaka Metropolitan Police’s Counterterrorism Unit.
Federal authorities have seized three domains associated with the operation: techtreek.com, egiftcardstorebd.com, and idtempl.com. Visitors to these sites now encounter law enforcement seizure notices.
Hasan faces six counts of transferring false identification documents and two counts of false passport use, each carrying a potential 15-year prison sentence.
A social security fraud charge carries a maximum sentence of five years. Each count also includes potential $250,000 fines and supervised release.
Assistant U.S. Attorney Benjamin Hargrove leads the prosecution. Officials emphasize these are allegations, and Hasan remains presumed innocent until proven guilty.
The case highlights growing concerns about digital identity fraud and the global reach of cybercrime marketplaces operating from overseas locations.
