Jordanian Man Pleads Guilty to Selling Network Access to 50 Companies as Initial Access Broker

A 40-year-old Jordanian man has pleaded guilty in U.S. federal court to operating as an "access broker," selling unauthorized network access to at least 50 victim companies.

Feras Khalil Ahmad Albashiti, who operated under the alias "r1z," entered his plea before U.S. District Judge Michael A. Shipp in Trenton, New Jersey.

How He Operated

Albashiti used the moniker "r1z" on an online forum where malware and malicious code were sold. In May 2023, he sold unauthorized access to networks of at least 50 companies to an undercover law enforcement officer in exchange for cryptocurrency.

Access brokers are a key component of the cybercrime ecosystem. They compromise corporate networks and sell that access to other criminals - typically ransomware operators or data thieves - who then carry out the actual attacks.

Arrest and Extradition

Albashiti was residing in the Republic of Georgia when identified. The Justice Department's Office of International Affairs secured his extradition in July 2024.

He pleaded guilty to fraud and related activity in connection with access credentials.

Sentencing

Albashiti faces a maximum penalty of 10 years in prison and a fine of up to $250,000, or twice the gross gains or losses from the offense. Sentencing is scheduled for May 11, 2026.

The investigation was led by the FBI's Newark field office under Special Agent in Charge Stefanie Roddy.