June 2, 2016 by

Russian Authorities Nab Hacker Gang Behind $25m Cyber-Theft

 A hacker gang consisting of at least 50 individuals have been apprehended, many of them arrested after allegedly using malware to steal over 1.7 billion roubles ($25 million USD).

A cybercriminal hacker gang from Russia that allegedly infected websites with Trojan malware to gain access to victims’ computers and subsequently, their bank accounts, have been apprehended in a series of raids by Russian authorities.

Raids were carried out in 15 different regions across Russia, Russian internal security service FSB revealed.

A statement by the authority also highlighted the haul as a result of the raids.

“As a result of [the] searches, a large quantity of computer equipment was confisticated along with communications gear, bank cards in false names,” the FSB internal security service stated, adding, “and also financial documents and significant amounts of cash confirming the illegal nature of their activity.”

Lurk – Trojan Malware

The malware authors behind Lurk, a malware that is essentially without a file and exists on RAM, infected legitimate and popular websites with the malware. Inevitably, victims’ personal computers were infected after simply opening the webpage. When downloaded onto a victim’s PC, Lurk then downloaded additional malicious modules, granting the malicious hackers access to the machine.

It is here that login names and passwords for online bank accounts were stolen, including that of Russia’s largest bank, Sberbank.

Related read: Banking Trojans Combine to Siphon $4 Million in a Few Days

The bank, along with Russian cybersecurity firm Kaspersky Lab aided authorities in the investigation leading to the raids and arrests.

Ruslan Stoyanov, head of computer incident investigation at Kaspersky Lab shone some light into the Lurk Trojan malware strain.

Lurk started attacking banks one-and-a-half years ago; before then its malicious program targeted various enterprise and consumer systems.

Kaspersky Lab also revealed that its researchers were able to analyze and identify the hackers’ network of computers and servers. Armed with the knowledge, Russian Police and authorities were notified.

Group IB, another security firm from Russia that actively profiles cybercrime groups in Eastern Europe revealed that the Lurk gang had been operational since 2011.

Image credit: YouTube.

About the author

Image of Author

LIFARS is a digital forensics and cybersecurity intelligence firm based in New York City. LIFARS is ranked as one of the top Digital Forensics and Cyber Investigations companies in 2016 and as one of the top cybersecurity companies in the New York metropolitan area for 2015 on the Cybersecurity 500 – a directory of the hottest and most innovative companies to watch in the cybersecurity industry.

Related articles

UK Cybersecurity Chief Blames Russia for Cyberattacks

The head of the UK GCHQ’s National Cyber Security Centre (NCSC) has accused Russia of staging...

Read more arrow_forward

Hackers Steal Compromising Photos from High-Profile Plastic Surgeon

Hackers have broken into a high-profile plastic surgeon in London to steal a cache of sensitive...

Read more arrow_forward

Secret Obama-Initiated US Program Targets Cyberstrikes against Russia

 A new report has claimed that former President Barack Obama approved the use of cyber weaponry...

Read more arrow_forward