The defendants compromised email accounts of individual and business victims, which they used to send fraudulent payment instructions to financial institutions or business associates to misappropriate funds.  The indictment alleges that the defendants used the stolen identifying information of individual victims to obtain Employer Identification Numbers and state business certificates in the name of shell businesses. Source: Us Attorney, District of Maryland