THE HAGUE, THE NETHERLANDS: Police have arrested at least 100 people in global raids against notorious malware being sold complete with "ransom notes" to extort money from people after taking control of their computers.
At least 100 people have been arrested for buying malware from BlackShades and using it to extort money from innocent victims. Image: Malwarebytes Unpacked
"During the course of a worldwide investigation, creators, sellers and users of BlackShades malware were targeted by judicial and law enforcement authorities in 16 different countries," Europe-wide police and justice bodies Europol and Eurojust said in a statement.
Thousands of people around the world have bought BlackShades RAT (Remote Access Tools) malicious software or malware, which can be used to secretly take control of a user's webcam or entire computer, as well as encrypt its contents and hold them to ransom.
The malware could also be used to carry out distributed denial-of-service cyber-attacks to bring down websites.
BlackShades comes complete with model "ransom notes" for extorting cash after notifying a user that they have lost control of their computer.
"Warning! Your computer has been hacked and your private files encrypted and can only be decrypted by us," reads one such note along with blank spaces for bank account details where the "ransom" should be paid.
Over two days, police and the FBI raided 359 houses, arrested 97 people and seized "substantial quantities" of cash, illegal guns and drugs, as well as over 1,000 data storage devices, the statement said.
"A recent case in the Netherlands of BlackShades malware being used for criminal purposes was that of an 18-year-old man who infected at least 2,000 computers, controlling the victim's webcams to take pictures of women and girls," Eurojust said.
Software sold to hundreds of people
Among the countries raided were The Netherlands, Belgium, France, Germany, the UK, Italy, the US, Canada, Chile and Switzerland.
The FBI passed on a list of nationals suspected of having bought or used BlackShades to their respective countries after arresting two people who wrote the software, a judicial source in Paris said.
French police last week raided around 50 properties as part of the investigation, detaining 26 people.
Seven of those detained admitted possessing BlackShades for nefarious purposes that included hacking webcams or Facebook accounts, the public prosecutor said.
Eight suspects said they used the malware to pirate online video games. "The investigation is continuing," a French judicial source said.
Hacker websites began reporting three days ago that police were raiding people suspected of buying or using BlackShades, which is reportedly available on the so-called "darknet" network of trusted peers for under US$100.
Chatrooms suggested police were using records from the PayPal payment site to identify those who bought the malware.
I-Net Bridge For more than two decades, I-Net Bridge has been one of South Africa’s preferred electronic providers of innovative solutions, data of the highest calibre, reliable platforms and excellent supporting systems. Our products include workstations, web applications and data feeds packaged with in-depth news and powerful analytical tools empowering clients to make meaningful decisions.
We pride ourselves on our wide variety of in-house skills, encompassing multiple platforms and applications. These skills enable us to not only function as a first class facility, but also design, implement and support all our client needs at a level that confirms I-Net Bridge a leader in its field. Go to: http://www.inet.co.za
LEGAL DISCLAIMER: This Message Board accepts no liability of legal consequences that arise from the Message Boards (e.g. defamation, slander, or other such crimes). All posted messages are the sole property of their respective authors. The maintainer does retain the right to remove any message posts for whatever reasons. People that post messages to this forum are not to libel/slander nor in any other way depict a company, entity, individual(s), or service in a false light; should they do so, the legal consequences are theirs alone. Bizcommunity.com will disclose authors' IP addresses to authorities if compelled to do so by a court of law.