An investigation courting again virtually ten years has seen the extradition this week to america of a person suspected to be the top of 1 the world’s most prolific Russian-speaking cybercriminal gangs.
The UK’s Nationwide Crime Company (NCA) says it has been investigating a cybercriminal utilizing the net deal with “J P Morgan” since 2015, alongside parallel investigations run by america FBI and Secret Service.
The primary notable look of the moniker “J P Morgan” dates again to 2011, when he and associates launched the Reveton ransomware.
Early variations of Reveton posed as a warning from police that victims’ computer systems had been locked as a consequence of unspecified copyright offences, and demanding with the specter of legal proceedings {that a} “superb” be paid inside 48 hours.
Later variations of Reveton took a extra sinister flip, locking computer systems with claims that they’d been used to view photographs of kid abuse on-line.
Reveton would even detect a sufferer’s webcam and show a picture of the person alongside the demand for cost – scary them into paying a “superb” by means of worry of being imprisoned.
The Reveton assaults had been changing into extra subtle over time, changing into the primary ever malware to undertake the ransomware-as-a-service (RaaS) enterprise mannequin.
Tens of hundreds of thousands of {dollars} are thought to have been extorted from customers worldwide by the criminals’ malware.
“J P Morgan” and his associates are described by the NCA, as “elite cybercriminals” who’ve taken excessive measures over a few years to guard their identifies and keep away from detention by regulation enforcement businesses.
Nonetheless, investigators say they’ve efficiently recognized, tracked, and situated the people throughout Europe who’re mentioned to have been chargeable for the event and distribution of varied strains of ransomware, together with Reveton and Ransom Cartel, in addition to the infamous Angler exploit equipment.
Spanish police, supported by officers from UK and US regulation enforcement businesses, arrested 38-year-old Maksim Silnikau, also called Maksym Silnikov, at an condominium in Estepona, southern Spain, in July 2023.
Silnikau, from Belarus, is believed by police to have used the “J P Morgan” moniker inside the cybercriminal group, in addition to different handles together with “xxx” and “lansky”.
On Friday 9 August 2024, Silnikau was extradited from Poland to america the place he faces prices associated to cybercrime, alongside Vladimir Kadariya, 38, from Belarus, and 33-year-old Andrei Tarasov, from Russia.
“These are extremely subtle cyber criminals who, for various years, had been adept at masking their exercise and identities. Their impression goes far past the assaults they launched themselves,” mentioned NCA Deputy Director Paul Foster. “They basically pioneered each the exploit equipment and ransomware-as-a-service fashions, which have made it simpler for individuals to change into concerned in cybercrime and proceed to help offenders.”
Editor’s Observe: The opinions expressed on this and different visitor creator articles are solely these of the contributor and don’t essentially mirror these of Tripwire.