Law enforcement agencies detain hacking group Blackshades
Law enforcement agencies of the EU and the United States announced a special operation to detain customers, operators, and the creators of the remote access tool (or backdoor), which is known as the Blackshades RAT (ESET: Win32 / VB.NXB, Microsoft: Worm: Win32 / Ainslot, Symantec : W32.Shadesrat). The developers of the backdoor provided with its help full access to the victims' computers for their customers (clients). In turn, customers could use malicious code for their intended purpose, for example, to spy on users via a webcam. According to Europol, over two days of the operation, more than 80 people were detained, one way or another related to the criminal scheme of distribution and use of the Blackshades.
')
Law enforcement agencies have drawn the fact of large-scale exploitation of backdoor by attackers in order to obtain various confidential user data in countries around the world. It is indicated that in one of the latest cases of the use of this malicious program by an 18-year-old attacker, they infected more than 2,000 computers in the Netherlands. In this case, the attacker recorded the data of webcams (video) of their victims.
The operation was carried out against both the alleged authors and their customers. At the same time, the law enforcement agencies of the following states were involved in it: Holland, Belgium, France, Germany, Great Britain, Finland, Austria, Estonia, Denmark, USA, Canada, Chile, Croatia, Italy, Moldova and Switzerland.
The attackers distributed their software through a special website bshades.eu, on the start page of which the following picture now flaunts. The remote access tool was put up for sale for $ 40- $ 50 and provided ample opportunities for hackers to gain access to user data, including the already indicated ability to access the webcam, capture screenshots, record video, and receive files.
Some of the key cybercriminals in the Blackshades group were:
I have been approved by the European Cybercrime Center (EC3) for all countries.
')
Law enforcement agencies have drawn the fact of large-scale exploitation of backdoor by attackers in order to obtain various confidential user data in countries around the world. It is indicated that in one of the latest cases of the use of this malicious program by an 18-year-old attacker, they infected more than 2,000 computers in the Netherlands. In this case, the attacker recorded the data of webcams (video) of their victims.
The operation was carried out against both the alleged authors and their customers. At the same time, the law enforcement agencies of the following states were involved in it: Holland, Belgium, France, Germany, Great Britain, Finland, Austria, Estonia, Denmark, USA, Canada, Chile, Croatia, Italy, Moldova and Switzerland.
The attackers distributed their software through a special website bshades.eu, on the start page of which the following picture now flaunts. The remote access tool was put up for sale for $ 40- $ 50 and provided ample opportunities for hackers to gain access to user data, including the already indicated ability to access the webcam, capture screenshots, record video, and receive files.
Some of the key cybercriminals in the Blackshades group were:
- Alex Yucel, one of the alleged malware authors. He was arrested in Moldova in November 2013 and is awaiting extradition to the United States.
- Brendan Johnston, contributed to the spread of malware. He was an intermediary between the developers and the customers themselves, and also provided technical support for customers. A few days ago he was arrested in California.
- Kyle Fedorek, one of the Blackshades customers. I used it to install on users' computers and steal information. A few days ago he was arrested at his home in New York.
- Marlen Rappa, one of the customers. Used RAT to install on users' computers and steal information. A few days ago, he was arrested at his home in New Jersey.
- Michael Hogue, one of the alleged authors of the malware. He was arrested in June last year in Arizona.
Source: https://habr.com/ru/post/223497/
All Articles