Home > Security > Security News

Fantasy Sports and Betting Website Hacker Sentenced for Credential Stuffing Attack Compromising 60,000 Accounts

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
Prison Bars - Man - Jail
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google
Key Takeaways
  • Sentence Imposed: Minnesota man Nathan Austad received 18 months in prison for involvement in a credential stuffing attack.
  • Third Defendant: Austad joins co-defendants Joseph Garrison and Kamerin Stokes in being sentenced in the investigation.
  • Scope Confirmed: The attackers used darknet-bought credentials to compromise roughly 60,000 accounts and netted about $600,000 from 1,600 of them.

Nathan Austad, also going by the alias "Snoopy," was sentenced to 18 months in prison for hacking user accounts on a fantasy sports and betting website and selling access to those accounts. The attackers purchased stolen credentials for the dark web.

Inside the Credential Stuffing Attack

On December 12, 2025, Austad, 21, of Farmington, Minnesota, pled guilty to one count of conspiring to commit computer intrusion. On or about November 18, 2022, Austad and his coconspirators launched a credential stuffing attack against the unnamed website.

They systematically tested stolen username and password pairs purchased on the dark web against user accounts, the Department of Justice (DOJ) said citing court documents. The operation successfully compromised approximately 60,000 user accounts. 

A photo of AUSTAD’s Shop website with victim companies redacted | Source: DOJ
A photo of AUSTAD’s Shop website with victim companies redacted | Source: DOJ

In many cases, the defendants added their own payment methods to victim accounts and withdrew existing funds, stealing roughly $600,000 from about 1,600 accounts. Austad also controlled cryptocurrency accounts that received approximately $465,000, including criminal proceeds.

Darkweb Shop and Co-Defendant Sentences

Austad directly controlled and profited from his own "Shop," named after the Peanuts character Snoopy, which trafficked stolen account access. He was ordered to pay $463,684.48 in forfeiture and $1,327,061 in restitution, and he also received three years of supervised release.

Austad is the third defendant sentenced in the investigation. Joseph Garrison received 18 months in 2024, and Kamerin Stokes, using the alias "TheMFNPlug," received 30 months on April 16, 2026.

Last month, Ukraine began investigating a teen suspected of breaching 30,000 customer accounts at a California-based online retailer using infostealers. Late last year, the DOJ seized a stolen password database and domain to halt account takeovers and disrupt a fraud network.

Add a Comment
Related
Weekly Cybersecurity Roundup: Deepfake Discussions Rose 600 Percent on Crime Forums as Skill Gaps Hampered Defenders
Weekly Cybersecurity Roundup: Major Law Enforcement Takedowns, University Breaches, Deepfake Victims, and Romance Lures
Weekly Cybersecurity Roundup of Falling Crime Networks and Rising AI Concerns
Spain Police Arrests Suspect in Massive Doxing Campaign Against State Officials
Weekly Cybersecurity Roundup: Extortion Stumbles, Trust Gets Tested, and Investigators Close In
Fourth Individual Sentenced in Darknet Counterfeit Pill Distribution Conspiracy
Most Popular
Exposure Management: Lessons From ServiceNow Vulnerabilities
Telegram Restrictions in India Trigger VPN Download Surge
India's Temporary Telegram Restrictions Trigger One of 2026's Biggest VPN Download Surges
Usbliter8 Exploit Targets Apple SecureROM in Older iPhones, iPhone XS–11
Meta 3D Logo
Meta Pauses Model Capability Initiative (MCI) Over Data Security Concerns
WhatsApp VBScript Campaign Installs ManageEngine RMM, Kaspersky Warns
One unlocked padlock among locked padlocks
Tata Electronics Confirms Data Breach Affecting Apple, Tesla Supplier
Exposure Management: Lessons From ServiceNow Vulnerabilities
India's Temporary Telegram Restrictions Trigger One of 2026's Biggest VPN Download Surges
Usbliter8 Exploit Targets Apple SecureROM in Older iPhones, iPhone XS–11
Meta Pauses Model Capability Initiative (MCI) Over Data Security Concerns
WhatsApp VBScript Campaign Installs ManageEngine RMM, Kaspersky Warns
Tata Electronics Confirms Data Breach Affecting Apple, Tesla Supplier

Most Popular
Exposure Management: Lessons From ServiceNow Vulnerabilities
Telegram Restrictions in India Trigger VPN Download Surge
India's Temporary Telegram Restrictions Trigger One of 2026's Biggest VPN Download Surges
Usbliter8 Exploit Targets Apple SecureROM in Older iPhones, iPhone XS–11
Meta 3D Logo
Meta Pauses Model Capability Initiative (MCI) Over Data Security Concerns
WhatsApp VBScript Campaign Installs ManageEngine RMM, Kaspersky Warns
One unlocked padlock among locked padlocks
Tata Electronics Confirms Data Breach Affecting Apple, Tesla Supplier
Exposure Management: Lessons From ServiceNow Vulnerabilities
India's Temporary Telegram Restrictions Trigger One of 2026's Biggest VPN Download Surges
Usbliter8 Exploit Targets Apple SecureROM in Older iPhones, iPhone XS–11
Meta Pauses Model Capability Initiative (MCI) Over Data Security Concerns
WhatsApp VBScript Campaign Installs ManageEngine RMM, Kaspersky Warns
Tata Electronics Confirms Data Breach Affecting Apple, Tesla Supplier

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: