Romanian Hacker Catalin Dragomir Pleads Guilty to Selling Stolen Access to Oregon State Government Computer and Other U.S. Networks in Federal Court

In a case highlighting the ongoing battle against international cybercrime, a Romanian national admitted guilt yesterday for his role in a series of online intrusions targeting U.S. victims, including an Oregon state government office.

The incidents, which date back to 2021, caused significant financial losses and exposed sensitive personal information.

Catalin Dragomir, 45, formerly of Constanta, Romania, pleaded guilty to charges of obtaining information from a protected computer and aggravated identity theft.

The criminal activity centered on unauthorized access to computer systems, followed by the sale of that access to third parties.

Selling Stolen Access and Personal Data

According to court filings, Dragomir infiltrated a computer within the network of an Oregon state government office in June 2021.

Once inside, he copied personal identifying information from the system and shared samples with prospective buyers. But that wasn’t his only target.

Court documents indicate that Dragomir also sold access to other computer networks across the United States, generating losses estimated at $250,000 or more.

His actions underscore how cybercriminals can turn a single breach into multiple avenues of exploitation, affecting both government and private-sector victims.

Arrest and Extradition

Dragomir was apprehended in Romania in November 2024.

Through extensive cooperation between U.S. and Romanian authorities, he was extradited to the United States in January 2025 to face federal charges.

The process involved the Criminal Division’s Office of International Affairs working closely with Romania’s Ministry of Justice, Directorate for International Law and Judicial Cooperation, and the Romanian judiciary — a demonstration of how international collaboration is critical in tackling cybercrime.

The Legal Proceedings Ahead

Dragomir faces a May 26, 2026 sentencing date.

Federal law stipulates a maximum of five years in prison for obtaining information from a protected computer, followed by a mandatory consecutive sentence of two years for aggravated identity theft.

The exact sentence will be determined by a federal judge after reviewing the U.S. Sentencing Guidelines and other statutory factors.

Prosecuting the case are Trial Attorneys Benjamin A. Bleiberg and Alison M. Zitron from the Criminal Division’s Computer Crime and Intellectual Property Section (CCIPS), alongside Assistant U.S. Attorney Katherine A. Rykken for the District of Oregon.

The investigation is being led by the FBI Portland Field Office, with support from private-sector partners, including Darkweb IQ.

CCIPS and the Fight Against Cybercrime

This case is one of many in which CCIPS has taken the lead against cybercriminals.

Since 2020, the division has secured convictions for over 180 cyber offenders and facilitated the return of more than $350 million to victims.

CCIPS coordinates domestic and international enforcement efforts and frequently collaborates with private-sector experts to uncover and stop cybercrime.

The Dragomir case serves as a reminder that cybercrime often spans borders, requiring a combination of investigative rigor, international legal cooperation, and technical expertise.

What’s Next?

With sentencing scheduled for May 26, 2026, the outcome will determine the extent of Dragomir’s prison term.

Beyond the courtroom, U.S. authorities continue to monitor and pursue cybercriminal networks, emphasizing both prevention and enforcement.

For victims, ongoing digital security improvements and public-private cooperation remain key strategies to combat these increasingly sophisticated threats.

Summary

Catalin Dragomir, a 45-year-old Romanian national, pleaded guilty to hacking into an Oregon state government computer in 2021 and selling access to U.S. networks, causing at least $250,000 in losses.

Arrested in Romania in 2024 and extradited to the U.S. in 2025, Dragomir now faces sentencing on May 26, 2026, with potential prison time of seven years for obtaining information from a protected computer and aggravated identity theft.

The case highlights international cooperation in cybercrime enforcement, with the FBI and the Criminal Division’s CCIPS leading investigations, supported by private-sector partners such as Darkweb IQ, and continues a broader effort to hold cybercriminals accountable while recovering victim losses.