Overview
- The Justice Department said Dragomir admitted to obtaining information from a protected computer and aggravated identity theft and agreed to pay full restitution.
- He gained unauthorized administrator access in June 2021, advertised it for sale, and negotiated a $3,000 payment in Bitcoin while repeatedly accessing the system to prove control.
- Court filings say he provided a prospective buyer with samples of employees’ personal data, including login credentials, name, email address, and Social Security number.
- Prosecutors allege he also sold access tied to 10 other U.S. victims, with documented losses totaling at least $250,000.
- Dragomir was arrested in Romania in November 2024 and extradited to the U.S. in January 2025; he faces up to seven years in prison, a fine of up to $250,000, and supervised release.