Friday, April 23, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

US charges two members of the Dridex malware gang

December 9, 2019
in Internet Security
US charges two members of the Dridex malware gang
587
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

Image: DOJ

The US Department of Justice announced charges today against two Russian nationals behind the infamous Dridex malware.

The indictment names Maksim Yakubets and Igor Turashev as two of the developers behind the Dridex banking trojan, and specifically names Yakubets as the group’s leader.

You might also like

Best free PC antivirus software in 2021

ServiceNow launches unified agent platform, aims to meld diagnostics with incident automation

SolarWinds hack analysis reveals 56% boost in command server footprint

In addition, the DOJ brought additional charges against Yakubets for also participating in the development and proliferation of the ZeuS banking trojan, a precursor of Dridex, active between 2007 and 2010.

US authorities said Yakubets used ZeuS to steal more than $70 million from victims; however, Yakubets’ main creation was Dridex and the cybercrime ecosystem it created around it — from which authorities said Yakubets made roughly $100 million.

Dridex was first spotted in 2011, a year after the ZeuS source code was leaked online by a competitor.

Initial versions of the Dridex malware were named Cridex, but as the malware evolved and was picked up by more and more cybersecurity firms, it became known as Dridex or Bugat, with the Dridex name becoming the most widely used.

The Dridex malware is still active even today.

Evil Corp – the world’s most harmful cyber crime group

The name Dridex was initially used to describe the banking trojan, a piece of malware that stole banking credentials from infected hosts by injecting fake bank login pages into people’s browsers.

However, the Dridex name was also used many times to describe a broad range of criminal activities that link back to the people behind the Dridex malware. This includes the Necurs spam botnet and the BitPaymer ransomware.

But while antivirus firms referred to the group as Dridex, they often called themselves Evil Corp.

The UK National Crime Agency, which was also involved in the investigation, said it began tracking Dridex — and Evil Corp circa 2014 — calling it “the world’s most harmful cyber crime group.”

The NCA claims that Yakubets employed dozens of people to run the various Evil Corp operations, often from the basements of Moscow cafes.

Similar to other hackers of his stature, Yakubets also liked to flaunt his illegally acquired wealth on social media, often posting images of expensive cars, piles of money, and glitzy social events.

evilcorp.png

Image: NCA

According to US court documents, Yakubets and his co-conspirators operated and used the Dridex banking trojan themselves, but they also allowed others to spread the malware on their behalf, taking a “$100,000 initial fee and 50% of all revenues with a minimum of $50,000 a week.”

Money stolen from victims’ accounts was sent back to perpetrators using a network of money mules, which received stolen funds in their accounts, and then redirected the cash to Evil Corp members or their affiliates.

Furthermore, as the malware scene started to evolve from banking trojans towards ransomware, Evil Corp adapted as well. The DOJ claims that starting 2016, Yakubets’ gang modified the Dridex malware to help with the installation of ransomware.

The indictment specifically lists JWF Industry (metal manufacturer) a victim company that had its computers infected with ransomware deployed via the Dridex trojan.

The second suspect named in today’s indictment, Turashev, served as a Dridex developer. The DOJ said he allegedly handled a variety of responsibilities, including system administration, management of internal control panels, and oversight of the botnet operations.

The DOJ claims he also orchestrated spam operations and later also used Dridex to install ransomware on victims’ computers.

Yakubets and Turashev are still at large, and believed to reside in Moscow, Russia. The US is currently offering a $5 million reward for information that would lead to Yakubets’ arrest.

poster.png

Image: FBI

Besides the DOJ indictment, the US Treasury also imposed sanctions on 24 entities associated with Yakubets and Evil Corp, restricting access to the group’s assets and international financial systems.

In 2015, US and UK authorities arrested another member of the Dridex gang, a Moldavian named Andrey Ghinkul. At the time, authorities claimed Ghinkul was the Dridex administrator; however, the malware continued to operate and even increased its activity following his arrest.

Connections with Russian intelligence

In a live video conference today, US authorities also said that they believe that Yakubets has also been working with the Russian government since 2017.

They claimed that Yakubets has been helping Russian intelligence with the collection of sensitive information from computers that have been infected using the Dridex malware.

Asked by a reporter, US authorities confirmed that they sent a request for aid during the investigation to Russian law enforcement, who responded and helped “to a point.”

This is not the first time such a theory has been put forward by US authorities. They previously claimed that Evgeniy Mikhailovich Bogachev, the creator of the Gameover Zeus malware, had also helped Russian intelligence with the collection of sensitive documents from infected computers, prior to being charged in 2014. Yakubets, who went online under the moniker “Aqua,” was mentioned in Bogachev’s indictment.

Until today, Bogachev was the highest-ranked hacker on the FBI’s most-wanted cyber list, with a reward of $3 million for his arrest. Starting today, Yakubets stands atop this list.

Credit: Zdnet

Previous Post

Learn Python for data science and machine learning for just $10

Next Post

AWS SageMaker's new machine learning IDE isn't ready to win over data scientists

Related Posts

Best free PC antivirus software in 2021
Internet Security

Best free PC antivirus software in 2021

April 23, 2021
ServiceNow launches unified agent platform, aims to meld diagnostics with incident automation
Internet Security

ServiceNow launches unified agent platform, aims to meld diagnostics with incident automation

April 23, 2021
SolarWinds hack analysis reveals 56% boost in command server footprint
Internet Security

SolarWinds hack analysis reveals 56% boost in command server footprint

April 22, 2021
New US Justice Department team aims to disrupt ransomware operations
Internet Security

New US Justice Department team aims to disrupt ransomware operations

April 22, 2021
Facebook uncovers Palestinian government officials targeted with malware
Internet Security

Facebook uncovers Palestinian government officials targeted with malware

April 22, 2021
Next Post
AWS SageMaker’s new machine learning IDE isn’t ready to win over data scientists

AWS SageMaker's new machine learning IDE isn't ready to win over data scientists

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

Evolving ITOps with AIOps with no-code AI training with Cloud Pak for Watson AIOps – IBM Developer
Technology Companies

Evolving ITOps with AIOps with no-code AI training with Cloud Pak for Watson AIOps – IBM Developer

April 23, 2021
Best free PC antivirus software in 2021
Internet Security

Best free PC antivirus software in 2021

April 23, 2021
Cybercriminals Using Telegram Messenger to Control ToxicEye Malware
Internet Privacy

Cybercriminals Using Telegram Messenger to Control ToxicEye Malware

April 23, 2021
Strategies for a successful Voice of the Customer program
Data Science

Strategies for a successful Voice of the Customer program

April 23, 2021
European Values Confront AI Innovation in EU’s Proposed AI Act  
Artificial Intelligence

European Values Confront AI Innovation in EU’s Proposed AI Act  

April 23, 2021
Artificial Intelligence and Machine Learning: Demographics & Firmographics
Machine Learning

Global Federated Learning Solutions Market (2020 to 2028)

April 23, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • Evolving ITOps with AIOps with no-code AI training with Cloud Pak for Watson AIOps – IBM Developer April 23, 2021
  • Best free PC antivirus software in 2021 April 23, 2021
  • Cybercriminals Using Telegram Messenger to Control ToxicEye Malware April 23, 2021
  • Strategies for a successful Voice of the Customer program April 23, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates