Ukraine's cyber police arrested a 31-year-old for running a cybercrime operation that gained access to bank accounts of American and Canadian users and sold it on the dark web.
The suspect distributed trojanized software as free resources using several websites that he administered.
He also promoted these sites through advertising campaigns.
The police note that the suspect distributed software for both desktop and mobile operating system.
The payloads infected the victims' devices and siphoned sensitive data to the hacker, who used it to hack into the victim's Google accounts and online banking.
The hacker then sold access to the breached accounts to other cybercriminals over the dark web, arranging payments in Bitcoins after contacting them over the phone using a Russian number.
The Ukrainian authorities say that the suspect had accomplices for this activity, who maintained darknet accounts.
Their identities is currently unknown but authorities are looking to learn who they are during the investigation.
The press release from the police also mentions that the hacker has been active since 2017 and pivoted to phishing in 2021.
Preliminary details confirmed that the cybercriminal obtained at least $92,000 from his activity, but that figure is likely to be much higher.
The arrest occurred on February 14, at the suspect's home.
The police confiscated various items during three separate searches, including a luxury Mercedes-Benz SUV worth around $65,000.
For his criminal activity, the suspect now faces up to 8 years of prison and the confiscation of all property, for violations in the Criminal Code of Ukraine - Part 2 of Article 209, Part 2 of Article 361, and Part 1 of Article 361-1.
To reduce the risk of malware infections while searching for specific software tools, users should exercise caution with promoted results in Google Search and verify that the loaded site is the official one from the vendor.
It is also a good idea to use an ad-blocker that can automatically hide promoted results on Google Search, safeguarding online activities from malvertising threats.
FBI seizes Warzone RAT infrastructure, arrests malware vendor.
Police disrupt Grandoreiro banking malware operation, make arrests.
Zeus, IcedID malware gangs leader pleads guilty, faces 40 years in prison.
Facebook ads push new Ov3r Stealer password-stealing malware.
Interpol operation Synergia takes down 1,300 servers used for cybercrime.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Mon, 19 Feb 2024 00:59:05 +0000