New zero-day exploit for Log4j Java library is an enterprise nightmare
ALPHV BlackCat – This year’s most sophisticated ransomware
Volvo Cars discloses security breach leading to R&D data theft
Massive attack against 1.6 million WordPress sites underway
Bugs in billions of WiFi, Bluetooth chips allow password, data theft
Ukraine arrests 51 for selling data of 300 million people in US, EU
Police arrests ransomware affiliate behind high-profile attacks
Grab this VPN-protected Netgear privacy router at $54 off MSRP today
Qualys BrowserCheck
STOPDecrypter
AuroraDecrypter
FilesLockerDecrypter
AdwCleaner
ComboFix
RKill
Junkware Removal Tool
How to remove the PBlock+ adware browser extension
Remove the Toksearches.xyz Search Redirect
Remove the Smashapps.net Search Redirect
Remove the Smashappsearch.com Search Redirect
Remove Security Tool and SecurityTool (Uninstall Guide)
How to remove Antivirus 2009 (Uninstall Instructions)
How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo
How to remove Google Redirects or the TDSS, TDL3, or Alureon rootkit using TDSSKiller
Locky Ransomware Information, Help Guide, and FAQ
CryptoLocker Ransomware Information Guide and FAQ
CryptorBit and HowDecrypt Information Guide and FAQ
CryptoDefense and How_Decrypt Ransomware Information Guide and FAQ
How to make the Start menu full screen in Windows 10
How to install the Microsoft Visual C++ 2015 Runtime
How to open an elevated PowerShell Admin prompt in Windows 10
How to Translate a Web Page in Google Chrome
How to start Windows in Safe Mode
How to remove a Trojan, Virus, Worm, or other Malware
How to show hidden files in Windows 7
How to see hidden files in Windows
eLearning
IT Certification Courses
Gear + Gadgets
Security
Police arrests ransomware affiliate behind high-profile attacks
Romanian law enforcement authorities arrested a ransomware affiliate suspected of hacking and stealing sensitive info from the networks of multiple high-profile companies worldwide, including a large Romanian IT company with clients from the retail, energy, and utilities sectors.
The 41-year-old Romanian national was arrested Monday morning at his home in Craiova, Romania, by the DIICOT (the Romanian Directorate for Investigating Organized Crime and Terrorism) and judicial police officers, on suspicions of unauthorized access to a computer system, unauthorized transfer of computer data, illegal interception of a computer transmission, and blackmail.
“The suspect, through various methods, managed to gain access to the computer networks of some companies (medium and large) in Romania, but also in other states, from where he extracted large volumes of data,” DIICOT said.
“The suspect would then ask for a sizeable ransom payment in cryptocurrency, threatening to leak the stolen data on cybercrime forums should his demands not be met,” the Europol added.
The apprehended ransomware affiliate stole a wide range of sensitive info from its targets’ systems according to the Romanian National Police, including companies’ financial information, employees’ personal information, and customers’ details.
DIICOT carried out the investigation in the European Multidisciplinary Platform Against Criminal Threats (EMPACT) framework with the help of the FBI and Europol’s EC3.
Europol announcement
It’s not currently known which ransomware gang the suspect was working with, the only detail being that the hacker was targeting high-profile companies.
This lines up with previous arrests made by Romanian law enforcement last month, on November 8, when they apprehended two suspects believed to be Sodinokibi/REvil ransomware affiliates.
The same day, Kuwaiti authorities also arrested a GandGrab ransomware affiliate, with the three of them were believed to be behind roughly 7,000 attacks and asked over €200 million in ransoms.
“All these arrests follow the joint international law enforcement efforts of identification, wiretapping and seizure of some of the infrastructure used by Sodinokibi/REvil ransomware family, which is seen as the successor of GandCrab,” Europol said.
US Deputy Attorney General Lisa Monaco also said in November that the US will crack down on ransomware activity in an interview with the Associated Press.
While the core ransomware gang operators are still safe in Russia, these recent arrests show that law enforcement worldwide is now disrupting their Ransomware-as-a-Service (RaaS) operations by arresting affiliates located all over the world.
REvil ransomware affiliates arrested in Romania and Kuwait
Alleged ransomware affiliate arrested for healthcare attacks
The Week in Ransomware – December 3rd 2021 – Seizing Bitcoin
FBI: Cuba ransomware breached 49 US critical infrastructure orgs
FBI seized $2.3M from affiliate of REvil, Gandcrab ransomware gangs
*clapping, busted !
Not a member yet? Register Now
Amazon explains the cause behind Tuesday’s massive AWS outage
Hackers start pushing malware in worldwide Log4Shell attacks
To receive periodic updates and news from BleepingComputer, please use the form below.
Terms of Use Privacy PolicyEthics Statement
Copyright @ 2003 – 2021 Bleeping Computer® LLC – All Rights Reserved
Not a member yet? Register Now
Read our posting guidelinese to learn what content is prohibited.

source

You May Also Like

Microsoft starts rolling out redesigned Notepad for Windows 11

Microsoft offers 50% subscription discounts to Office piratesRussian hacking group uses new…

8-year-old HP printer vulnerability affects 150 printer models

FBI seized $2.3M from affiliate of REvil, Gandcrab ransomware gangsEwDoor botnet targets…

Victims of $2 billion BitConnect fraud to get back $57 million

US indicts Iranian hackers for Proud Boys voter intimidation emailsWinamp prepares a…

Google disrupts massive Glupteba botnet, sues Russian operators

Grafana fixes zero-day vulnerability after exploits spread over TwitterGoogle disrupts massive Glupteba…