Nov 2, 2021
74 Views
0 0

Alleged Trickbot malware gang member extradited to United States, and appears in court

Written by

How can we help?

Your Account
Log in to your Bitdefender account and manage security for what matters.
Complete protection and unlimited VPN for 10 users.
Complete protection for 5 or 10 devices. Limited VPN.
Windows only security with limited VPN.
Basic protection for Windows only.
Basic protection for Mac only.
Ultra-fast VPN that keeps your online identity and activities safe from hackers, ISP’s and snoops.
Live Support offered by certified experts
Live Support offered by certified experts
Live Support offered by certified experts
Live Support offered by certified experts
Prevention, Hardening, Risk, and Incident Analytics
Advanced attack visibility with guided investigation
Integrated Prevention, EDR and Risk Analytics
SOC-Driven, Security-Focused Outcomes
Next-Gen AV for All Infrastructures
Next-Gen AV for Small Businesses
Protection for Virtual Servers and Desktops
Cloud-based Email Security
Purpose-built Container and Linux security
Advanced MSP Security Suite
Optimized protection for AWS

Log in to your Bitdefender account and manage security for what matters.
November 01, 2021
A 38-year-old Russian national has appeared in a US federal court, after being extradited from South Korea, to face charges of his alleged involvement in the notorious Trickbot malware gang.
The US Department of Justice believes that Vladimir Dunaev (also known as “FFX”) was a malware developer for the Trickbot group, which became infamous for its data-stealing Trojan horse that helped cybercriminals defraud innocent internet users since 2015.
According to a highly-redacted indictment, the Trickbot malware was born out of the ashes of similar banking Trojan horse named Dyre:
Duanev aand others are alleged to have been part of the gang which used Trickbot to steal money, personal, and confidential information from victims including businesses and financial institutions in the United States, United Kingdom, Australia, Belgium, Canada, Germany, India, Italy, Mexico, Spain, and Russia.
Information stolen by Trickbot included victims’ online banking passwords, credit card details, dates of birth, social security numbers.  Unauthorised access would be made to victims’ bank accounts and funds stolen.
In more recent years, Trickbot has also been used to infect victims’ PCs with ransomware.
Millions of computers worldwide are thought to have been infected by Trickbot, affecting individuals, banking organisations, school districts, utility firms, private businesses, and government departments.
Duanev (then only identified in media reports as “Mr A”) was arrested at Incheon International Airport, in Seoul, South Korea, in early September – having apparently been stranded in the country due to travel restrictions introduced by the Coronavirus pandemic and unable to return to his native Russia.
Earlier this year, the US Department of Justice announced that it had arrested a Latvian mother-of-two in Miami, after flying from her home in the South American country of Suriname.
55-year-old Alla “Max” Witte, was – similarly to Duanev – accused of developing code for the TrickBot malware gang.
In short, the US Department of Justice has captured two suspected members of the Trickbot gang.  And reading between the lines of their indictment against Duanev, it sounds as if they know the identities of others, and may be close to learning more about others or even apprehending others before too long.
If convicted of all counts against him, Dunaev could face up to 60 years in prison.
Graham Cluley is an award-winning security blogger, researcher and public speaker. He has been working in the computer security industry since the early 1990s.
October 26, 2021
October 25, 2021
October 22, 2021
October 20, 2021
September 23, 2021
August 31, 2021
November 01, 2021
November 01, 2021
October 29, 2021
© 2021 Bitdefender. All Rights Reserved

source

Article Categories:
Cybersecurity News

Leave a Reply