Feds go after hackers who demand ransom

Source: 
Coverage Type: 

The Department of Justice is cracking down on hackers in Russia and Ukraine who, officials say, are making millions of dollars by stealing bank information and holding computer files for ransom.

The agency announced efforts to disrupt two cyber crime programs -- “Cryptolocker” and “Gameover Zeus” -- allegedly developed and run by a “tightly knit gang of cyber criminals based in Russia and Ukraine” led by Russian Evgeniy Mikhailovich Bogachev.

Cryptolocker is a “ransomware” tool that encrypts a computer’s files until the owner pays a ransom. According to the agency, the ransomware has infected more than 234,000 computers, half of which are in the US. The release cites one estimate “that more than $27 million in ransom payments were made in just the first two months since Cryptolocker emerged” and said that the FBI seized the servers being used as “control hubs” for the ransomware.

The “Gameover Zeus” botnet is a malware network used to steal millions of dollars by capturing banking credentials. The botnet also was a common distribution tool for the Cryptolocker software, according to the agency. According to the release, between 500,000 and 1 million computers world wide are infected with Gameover Zeus, and 25 percent of those infected computers are in the US.

In addition to bringing charges against Bogachev for his alleged role as administrator of Gameover Zeus and Cryptolocker, the US government obtained civil and criminal court orders authorizing agencies to take steps to mitigate damage caused by these programs, including obtaining the IP addresses of affected computers.


Feds go after hackers who demand ransom US takes out computer malware that stole millions (CNNMoney) US Leads Global Effort to Disrupt Cyber Crime Ring (Reuters)