Ukrainian police announced the arrest of five members of a ransomware-affiliated group on Thursday, saying the group was behind attacks on more than 50 businesses in Europe and the United States.
In a statement, Ukraine’s Security Service and Cyber Police say the group has earned at least $1 million from its attacks on businesses.
US and UK law enforcement officers worked with Ukrainian officials in the operation.
Money laundering, hacking and selling malware
Authorities say the leader of the group is a 36-year-old man who worked with his wife and three other people from Kyiv. The five people face various charges in Ukraine related to money laundering, hacking and selling malware.
One of the people charged is wanted by law enforcement in the UK after “using a virus to obtain the bank card details of UK bank customers”, according to the police statement. Credit card data was used to purchase products online which were then resold.
“Police officers as well as law enforcement officials from Britain and the United States of America carried out nine searches of the suspects’ homes and cars. Computer equipment, mobile phones, bank cards, USB keys and three cars were seized”, list the police officials.
Ransomware and VPN service
Image: Ukrainian Security Service.
Ukraine’s Security Service provided more details about the group’s activity, explaining that in addition to its work with ransomware, it also offers a “VPN-like” service for “downloading computer viruses, spyware and other malware through the platform”.
This service was then used by other hackers to break into government and corporate systems, distribute ransomware and launch DDoS attacks.
Complex financial transactions to launder income
“In order to launder the funds received from these ‘activities’, the attackers carried out complex financial transactions using a number of online services, including some prohibited services in Ukraine. At the last stage, the funds were transferred to the payment cards of a vast network of fictitious people,” explains the Ukrainian security service.
“During the searches carried out at the place of residence and actual stay of the authors and in their cars, mobile phones, computer equipment and other material evidence of illegal activities were found and seized. »
This is the latest in a series of raids and arrests by Ukrainian police over the past few years. There have been several raids announced throughout 2021, including arrests of Clop ransomware operators.
Source: ZDNet.com