Saturday, May 31, 2025
HomeHacks24-Year-Old Australian Hacker Arrested For Creating and Selling Spyware

24-Year-Old Australian Hacker Arrested For Creating and Selling Spyware

Published on

SIEM as a Service

Follow Us on Google News

A 24-year-old man was arrested and charged with creating and selling spyware, triggering a global law enforcement operation. As a result, the AFP has charged a number of criminals and domestic violence perpetrators who purchase these illicit tools.

Since the age of 15, this Australian hacker has been creating RAT (Remote Access Trojan). Additionally, the Australian Federal Police also identified the victims along with the offenders in this operation.

Imminent Monitor (IM) is spyware that was sold through a network of individuals that Frankston man engaged with. More than 14500 individuals in 128 countries have purchased this illicit tool from the hacker so far. 

- Advertisement - Google News

A report published by the Australian Federal Police indicates that 201 people bought the RAT in Australia. A subset of IM RAT buyers in Australia (14.2%) are domestic violence defendants.

There is one purchaser on this list who is also on the register of child sex offenders. There were 14 individuals identified as buyers of RATs and 11, of them, purchased the RATs either within two years of receiving a DVO or during the active period of their DVO.

In the time since the campaign began in 2013, the app developer has earned anywhere from $300,000 to $400,000, mostly used for food delivery as well as other ‘consumables’ that are needed for the campaign. 

A maximum sentence of 20 years is possible for the Australian, who has been charged with six counts. As soon as the remote access tool (RAT) was installed on the computer of a victim, the victim could be controlled.

Here below we have mentioned the common activities that could be performed:-

  • Steal personal information
  • Spy on victims via webcams and microphones

Several methods are used to install spyware, including phishing emails, which could be used to spread the spyware.

In order to disseminate the program in the hacker community, it was made available on hacker forums and on a dedicated website. There is a lifetime license for this program which can be purchased for $25 and includes customer service as part of the package.

AFP received information about a suspicious RAT from Palo Alto Networks and the FBI in 2017. Operation Cepheus was launched in response to that information.

Charges

  • One count of producing data with intent to commit a computer offense, contrary to section 478.4(1) of the Criminal Code Act 1995 (Cth);
  • Two counts of supplying data with intent to commit a computer offense, contrary to section 478.4(1) of the Criminal Code Act 1995 (Cth);
  • One count of aiding, abetting, counseling or procuring the commission of an offense, namely the unauthorized modification of data to cause impairment, contrary to sub-sections 11.2(1) and 477.2(1) of the Criminal Code Act 1995 (Cth); and
  • Two counts of dealing in the proceeds of crime to the value of $100,000 or more, contrary to section 400.4(1) of the Criminal Code Act 1995 (Cth).

Security Measures

Here below we have mentioned all the recommended security measures:-

  • Keep your operating system and security software up-to-date.
  • You need to make sure that you have enabled the firewall on your device.
  • The only apps and software you should download are those that come from trustworthy sources.
  • When you are not using your webcam, make sure that it is covered.
  • Make sure your data is backed up on a regular basis.
  • Whenever you are browsing the internet, you should be cautious.
  • If you come across a suspicious link, pop-up or dialog box, do not click on it.
  • Stay up to date with the latest version of your internet browser.
  • If a new window is opened or something is downloaded, configure your web browser to alert you.
  • If you receive an email that seems to be unexpected or suspicious, do not click on any links or attachments within the email.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Attackers Exploit Microsoft Entra Billing Roles to Escalate Privileges in Organizational Environments

A startling discovery by BeyondTrust researchers has unveiled a critical vulnerability in Microsoft Entra...

Threat Actors Exploit Google Apps Script to Host Phishing Sites

The Cofense Phishing Defense Center has uncovered a highly strategic phishing campaign that leverages...

Dadsec Hacker Group Uses Tycoon2FA Infrastructure to Steal Office365 Credentials

Cybersecurity researchers from Trustwave’s Threat Intelligence Team have uncovered a large-scale phishing campaign orchestrated...

Beware: Weaponized AI Tool Installers Infect Devices with Ransomware

Cisco Talos has uncovered a series of malicious threats masquerading as legitimate AI tool...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Hackers Use AI-Generated Videos on TikTok to Spread Info-Stealing Malware

TrendMicro has uncovered a sophisticated campaign where threat actors are exploiting TikTok to distribute...

Novel Malware Evades Detection by Skipping PE Header in Windows

Researchers have identified a sophisticated new strain of malware that bypasses traditional detection mechanisms...

New Rust-Based InfoStealer Uses Fake CAPTCHA to Deliver EDDIESTEALER

A newly discovered Rust-based infostealer, dubbed EDDIESTEALER, has been uncovered by Elastic Security Labs,...