An investigation courting again nearly ten years has seen the extradition this week to the USA of a person suspected to be the pinnacle of 1 the world’s most prolific Russian-speaking cybercriminal gangs.
The UK’s Nationwide Crime Company (NCA) says it has been investigating a cybercriminal utilizing the net deal with “J P Morgan” since 2015, alongside parallel investigations run by the USA FBI and Secret Service.
The primary notable look of the moniker “J P Morgan” dates again to 2011, when he and associates launched the Reveton ransomware.
Early variations of Reveton posed as a warning from police that victims’ computer systems had been locked resulting from unspecified copyright offences, and demanding with the specter of felony proceedings {that a} “wonderful” be paid inside 48 hours.
Later variations of Reveton took a extra sinister flip, locking computer systems with claims that they’d been used to view photographs of kid abuse on-line.
Reveton would even detect a sufferer’s webcam and show a picture of the consumer alongside the demand for cost – scary them into paying a “wonderful” by concern of being imprisoned.
The Reveton assaults have been changing into extra refined over time, changing into the primary ever malware to undertake the ransomware-as-a-service (RaaS) enterprise mannequin.
Tens of tens of millions of {dollars} are thought to have been extorted from customers worldwide by the criminals’ malware.
“J P Morgan” and his associates are described by the NCA, as “elite cybercriminals” who’ve taken excessive measures over a few years to guard their identifies and keep away from detention by legislation enforcement companies.
Nevertheless, investigators say they’ve efficiently recognized, tracked, and situated the people throughout Europe who’re stated to have been answerable for the event and distribution of assorted strains of ransomware, together with Reveton and Ransom Cartel, in addition to the infamous Angler exploit package.
Spanish police, supported by officers from UK and US legislation enforcement companies, arrested 38-year-old Maksim Silnikau, also referred to as Maksym Silnikov, at an residence in Estepona, southern Spain, in July 2023.
Silnikau, from Belarus, is believed by police to have used the “J P Morgan” moniker inside the cybercriminal group, in addition to different handles together with “xxx” and “lansky”.
On Friday 9 August 2024, Silnikau was extradited from Poland to the USA the place he faces costs associated to cybercrime, alongside Vladimir Kadariya, 38, from Belarus, and 33-year-old Andrei Tarasov, from Russia.
“These are extremely refined cyber criminals who, for plenty of years, have been adept at masking their exercise and identities. Their affect goes far past the assaults they launched themselves,” stated NCA Deputy Director Paul Foster. “They basically pioneered each the exploit package and ransomware-as-a-service fashions, which have made it simpler for individuals to develop into concerned in cybercrime and proceed to help offenders.”
Editor’s Word: The opinions expressed on this and different visitor writer articles are solely these of the contributor and don’t essentially mirror these of Tripwire.
