Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
The ecosystem of infiltrators in Russia, more than anywhere in the world, has it It has always been unclear lines Between electronic crimes, the state sponsored by the state, and spying. now The indictment Among a group of Russian citizens and the removal of sprawling robots, the clearest example in the years is offered how one harmful programs enable hacks as varied such as ransom, wartime electronic attacks in Ukraine, and spying against foreign governments.
Today, the US Department of Justice announced criminal charges today against 16 individuals, and law enforcement authorities have linked the process of harmful programs known as Danabot, which according to complaint At least 300,000 machines were injured all over the world. The Ministry of Justice announces the Group’s charges as “its headquarters in Russia”, and it calls two suspects, Alexander Stepanov and Artem Alexandrovich Kalinkin, as a living in Novosibirk, Russia. Five other suspects are named in the indictment, while only nine others are identified through their borrowed names. In addition to those charges, the Ministry of Justice says that the defensive criminal investigation service – the defense investigation arm of the Ministry of Defense – takes on the seizures of Danabbut’s infrastructure around the world, including in the United States.
Regardless of the claim of how Danabot is used in the profit criminal piracy, the indictment also describes the second alternative to the harmful programs that it says is used in spying against the goals of military, government and NGOs. “The harmful programs like Danabbot harm hundreds of thousands of victims around the world, including the sensitive military, diplomatic and government entities, and cause millions of dollars in losses,” said American lawyer Bill Islelli in a statement.
Since 2018, Danabot has suffered millions of computers worldwide, initially as a banking process designed to steal directly from the owners of personal computers with normative features designed for credit card and cryptocurrency stealing. Since creators claim that they are in a “continued” model that made it available to other infiltrators’ groups in an amount ranging between 3000 and 4000 dollars per month, however, it was soon used as a tool to install various forms of harmful programs in a wide range of operations, including the ransom. Its goals have also spread quickly from the first victims in Ukraine, Poland, Italy, Germany, Austria and Australia to American and Canadian financial institutions, according to the analysis of the operation by Crowdstrike.
At one point in 2021, according to Crowdstrike, Danabot was used in the software supply of software that concealed the malware in the Javascript coding tool called NPM with millions of weekly downloads. Crowdstrike found the victims of that tool at risk through the financial, transportation, technology and media industries.
This scale and the wide range of its criminal uses made Danabot “tyrant of the electronic scene of crimes”, according to Selena Larson, a researcher threatening employees at the Cyber Security Company.
More unique, though, Danabot was also used sometimes for piracy campaigns that seem sponsored by the state or associated with the interests of the Russian government agency. In 2019 and 2020, it was used to target a handful of Western government officials in clear espionage, according to the accusation of the Ministry of Justice. according to ProofPointThe harmful programs were delivered in those cases in the messages of Takhamid, which impersonated the personality of the organization for security and cooperation in Europe and the entity of the Kazakhstan government.