Historic global cyber crime bust takes down 'BlackShades' users

Share this article:
Lauri Love, a 28-year-old UK man, was arrested at his home Friday.
Lauri Love, a 28-year-old UK man, was arrested at his home Friday.

An FBI-led investigation involving law enforcement agencies in 17 countries has led to one of the biggest cyber crime busts in recent history.

On Monday, officials charged nearly 100 individuals around the world, who were arrested over the weekend for using or distributing the malicious remote administration tool (RAT) dubbed “BlackShades.”

The malware could give an attacker nearly complete control over a compromised machine, including the ability to siphon sensitive data, take screenshots, record video, and meddle with messaging applications and social networks, according to researchers at Symantec.

The FBI detailed its investigation in criminal complaints filed Monday in Manhattan federal court against five individuals. Cooperation between the European Union's Judicial Cooperation Unit (EUROJUST) in The Hauge and the European Cybercrime Centre (EC3) at Europol led to a two-day operation involving 359 home raids carried out worldwide and resulting in 97 arrests, according to a release by EUROJUST.

During a Monday press conference, Leo Taddeo, special agent in charge of the Cyber and Special Operations Division for the FBI's New York Office, announced that one of the five men, Alex Yucel, is the alleged head of the cyber crime organization behind BlackShades, as well as the software's co-creator.

The busts may have been foreshadowed in comments made by an FBI official at a recent Reuters Cybersecurity summit, when he indicated that the agency expected to announce “searches, indictments and multiple arrests over the next several weeks,” according to a report by Reuters.

Last week, a flood of posts on hackforum.net indicated that raids had begun at the homes of BlackShades users and that law enforcement organizations were seizing any electronic equipment associated to the RAT. According to EUROJUST more than 1,000 data storage devices were seized, in addition to cash, firearms, and drugs.

The malicious software was by its authors on a dedicated website, bshades.eu, for prices ranging from $40 to $50.

According to information on whois.com, the domain went offline on Wednesday after the FBI seized the domain. Shortly after, posts on various forums by BlackShades buyers indicated that police raids in Europe had begun, according to a blog post by cyber crime investigator Rickey Gevers.

Page 1 of 2
Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

Beazley: employee errors root of most data breaches, but malware incidents cost ...

Insurance firm Beazley analyzed more than 1,500 data breaches it serviced between 2013 and 2014.

Apple issues seven updates, fixes more than 40 vulnerabilities in iOS 8, OS 10.9.5

Apple issues seven updates, fixes more than 40 ...

In one of its infrequent "Update Surprisedays," Apple plugged holes, boosted security and added features.

Canadian telecom co. Telus unveils first transparency report

The company received more than 100,000 government requests for customer data last year.