British Man Indicted for $25 Million Cybercrime Scheme

Kai West, a British man, has been indicted by the US Southern District of New York Attorney’s Office for allegedly operating under the alias “IntelBroker” on cybercrime forums. West is accused of selling stolen data, causing damages exceeding $25 million to victims. The indictment was unsealed with the involvement of former US Securities and Exchange Commission (SEC) Chairman and attorney Jay Clayton, who emphasized the FBI’s commitment to pursuing cybercriminals globally.

West, under the pseudonym IntelBroker, reportedly conspired with an online group known as CyberN***ers to steal data from various companies. The targeted entities included a telecommunications company, a municipal healthcare provider, an internet service provider, and over 40 other corporations. The data theft was part of a broader scheme to sell the illicitly acquired information for profit.

An undercover law enforcement agent played a crucial role in triggering the charges against West. The agent sent a private message to IntelBroker, offering to purchase data for $250 worth of Bitcoin (BTC). After the payment was made, the data, which included three admin-level usernames and passwords, was delivered. This transaction provided the evidence needed to arrest West, who was apprehended in France in February. The US is currently seeking his extradition.

FBI Assistant Director in Charge Christopher Raia described West as a “serial hacker” who was able to sell the stolen data for millions in illicit funds. IntelBroker was active on the now-defunct cybercrime forum BreachForums, where he offered stolen data for sale in Forum-1 credits, as well as for free. His activities spanned from approximately January 2023 to February 2025, with at least 41 of his threads selling data from companies based in the US.

Of the 158 threads allegedly started by West, 16 posts included a specific asking price for the data, totaling at least $2,467,000. West also accepted payments via the privacy coin Monero (XMR). His notoriety on BreachForums grew to the point where he was identified as the site’s owner starting in August 2024.

This case highlights the ongoing threat of data breaches and leaks, which continue to impact various industries. The recent leak of more than 16 billion login credentials from leading online service providers underscores the potential consequences for cryptocurrency holders. Earlier this month, it was reported that CoinbaseCOIN-- was informed in January that an employee of an outsourcing firm may have leaked customer data. The breach was disclosed in mid-May, revealing that cybercriminals recruited overseas support agents to leak user data, resulting in a $20 million extortion attempt.