European and North American cybercrime investigators said they have dismantled the heart of a malware operation directed by Russian criminals after a global operation involving British, Canadian, Danish, Dutch, French, German and US police.
International arrest warrants have been issued for 20 suspects, most of them living in Russia, by European investigators, while indictments were unsealed in the US against 16 people.
Those charged include the alleged leaders of the Qakbot and Danabot malware operations, including Rustam Rafailevich Gallyamov, 48, who lives in Moscow and Aleksandr Stepanov, 39, AKA JimmBee, and Artem Aleksandrovich Kalinkin, 34, AKA Onix, both of Novosibirsk, Russia, the US Department of Justice said.
Photo: Reuters
Cyberattacks aimed at destabilizing governments or simple theft and blackmail are becoming increasingly pernicious. The high-street retailer Marks & Spencer is one of the most high-profile and recent victims in the UK this month.
The Europeans, led by the German crime agency, Bundeskriminalamt (BKA), released public appeals in their attempts to track down 18 suspects believed to be involved in the Qakbot malware family, along with a third malware known as Trickbot.
BKA and its international counterparts said the majority of the suspects were Russians. The Russian national Vitalii Nikolayevich Kovalev, 36, already wanted in the US, is one of BKA’s most wanted.
He is allegedly behind Conti, considered to be the most professional and best-organized ransomware blackmail group in the world, with Kovalev described as one of the “most successful blackmailers in the history of cybercrime” by German investigators.
Using the pseudonyms Stern and Ben, BKA said that he is claimed to have attacked hundreds of companies worldwide and extracted large ransom payments from them.
Kovolev, 36, from Volgorod, is believed to be living in Moscow, where several firms are registered in his name. He was identified by US investigators in 2023 as having been a member of Trickbot.
Investigators also believe he was at the helm of Conti and other blackmail groups, such as Royal and Blacksuit, founded in 2022. His own cryptowallet is said to be worth about 1 billion euros (US$1.1 billion)
BKA said that of the 37 perpetrators they identified, they had enough evidence to issue 20 arrest warrants.
The US attorney’s office in California unsealed the details of charges against 16 defendants who allegedly “developed and deployed the DanaBot malware.”
The criminal infiltrations into victims’ computers were “controlled and deployed” by a Russia-based cybercrime organization that has infected more than 300,000 computers around the world, particularly in the US, Australia, Poland, India and Italy.
It was advertised on Russian-language criminal forums and also had an “espionage variant used to target military, diplomatic, government and non-governmental organizations,” the indictment says.
“For this variant, separate servers were established, such that data stolen from these victims was ultimately stored in the Russian Federation,” it added.
The Venezuelan government on Monday said that it would close its embassies in Norway and Australia, and open new ones in Burkina Faso and Zimbabwe in a restructuring of its foreign service, after weeks of growing tensions with the US. The closures are part of the “strategic reassignation of resources,” Venezueland President Nicolas Maduro’s government said in a statement, adding that consular services to Venezuelans in Norway and Australia would be provided by diplomatic missions, with details to be shared in the coming days. The Norwegian Ministry of Foreign Affairs said that it had received notice of the embassy closure, but no
A missing fingertip offers a clue to Mako Nishimura’s criminal past as one of Japan’s few female yakuza, but after clawing her way out of the underworld, she now spends her days helping other retired gangsters reintegrate into society. The multibillion-dollar yakuza organized crime network has long ruled over Japan’s drug rings, illicit gambling dens and sex trade. In the past few years, the empire has started to crumble as members have dwindled and laws targeting mafia are tightened. An intensifying police crackdown has shrunk yakuza forces nationwide, with their numbers dipping below 20,000 last year for the first time since records
EXTRADITION FEARS: The legislative changes come five years after a treaty was suspended in response to the territory’s crackdown on democracy advocates Exiled Hong Kong dissidents said they fear UK government plans to restart some extraditions with the territory could put them in greater danger, adding that Hong Kong authorities would use any pretext to pursue them. An amendment to UK extradition laws was passed on Tuesday. It came more than five years after the UK and several other countries suspended extradition treaties with Hong Kong in response to a government crackdown on the democracy movement and its imposition of a National Security Law. The British Home Office said that the suspension of the treaty made all extraditions with Hong Kong impossible “even if
Former Japanese prime minister Tomiichi Murayama, best known for making a statement apologizing over World War II, died yesterday aged 101, officials said. Murayama in 1995 expressed “deep remorse” over the country’s atrocities in Asia. The statement became a benchmark for Tokyo’s subsequent apologies over World War II. “Tomiichi Murayama, the father of Japanese politics, passed away today at 11:28am at a hospital in Oita City at the age of 101,” Social Democratic Party Chairwoman Mizuho Fukushima said. Party Secretary-General Hiroyuki Takano said he had been informed that the former prime minister died of old age. In the landmark statement in August 1995, Murayama said
RSS