An international cybercriminal organization that steals over 10 billion yen to dismantle with the cooperation of six countries including US and Germany


By

duallogic

An international cybercriminal organization that steals 100 million dollars (about 11 billion yen) in total from over 40,000 PCs using malware ' GozNym ' that steals login information of Internet banks, Bulgaria, Germany, Georgia, Moldova, Ukraine , It was dismantled with the cooperation of the police of each country.

GozNym Cyber-Criminal Network Operating out of Europe Targeting American Entities Dismantled in International Operation | OPA | Department of Justice
https://www.justice.gov/opa/pr/goznym-cyber-criminal-network-operating-out-europe-targeting-american-entities-dismantled

GOZNYM MALWARE: CYBER CRIMINAL NETWORK DISMANTLED IN INTERNATIONAL OPERATION | Europol
https://www.europol.europa.eu/newsroom/news/goznym-malware-cybercriminal-network-dismantled-in-international-operation



'Goz Nym' Banking Malware Gang Dismantled by International Law Enforcement

https://thehackernews.com/2019/05/GozNym-banking-malware.html

GozNym is a malware developed by combining ' Gozi (ISFB) ', which steals information from Internet banks, and ' Nymaim ', a malware that has the function of spreading another malware. GozNym has been rampant in the United States and Europe since around 2015, with about 41,000 victims and an estimated total damage of about 11 billion yen.


By

https://elements.envato.com/user/maxxyustas

It seems that the international cybercrime organization dealing with the GozNym was also highly organized. The organization consisted of 10 Russian members who belong to Eastern Europe, such as Bulgaria, Georgia, Moldova, Ukraine, and Russia, and each had a different role. Bulgaria's Krasimir Nikolov uses the stolen information to log in to the victim's account and withdraw the money, taking the role of 'the child ', Viktor Vladimirovich Eremenko, Farkhad Rauf Ogly Manokhin, Alexander Van Hoof was in charge of providing a deposit account to store the withdrawn money. There are other people in charge of managing computers infected with GozNym, and a bulletproof hosting administrator who provided servers to the organization.

Of the 10 members of this organization, 5 were arrested by the police in each country, and the organization was dismantled. However, for the remaining five, the FBI is releasing a wanted letter with a photo.



Five of the fugitives are believed to be hiding in Russia.

Related Posts:

in Security, Posted by darkhorse_log