Monday, September 9, 2024
HomeHacks24-Year-Old Australian Hacker Arrested For Creating and Selling Spyware

24-Year-Old Australian Hacker Arrested For Creating and Selling Spyware

Published on

A 24-year-old man was arrested and charged with creating and selling spyware, triggering a global law enforcement operation. As a result, the AFP has charged a number of criminals and domestic violence perpetrators who purchase these illicit tools.

Since the age of 15, this Australian hacker has been creating RAT (Remote Access Trojan). Additionally, the Australian Federal Police also identified the victims along with the offenders in this operation.

Imminent Monitor (IM) is spyware that was sold through a network of individuals that Frankston man engaged with. More than 14500 individuals in 128 countries have purchased this illicit tool from the hacker so far. 

- Advertisement - EHA

A report published by the Australian Federal Police indicates that 201 people bought the RAT in Australia. A subset of IM RAT buyers in Australia (14.2%) are domestic violence defendants.

There is one purchaser on this list who is also on the register of child sex offenders. There were 14 individuals identified as buyers of RATs and 11, of them, purchased the RATs either within two years of receiving a DVO or during the active period of their DVO.

In the time since the campaign began in 2013, the app developer has earned anywhere from $300,000 to $400,000, mostly used for food delivery as well as other ‘consumables’ that are needed for the campaign. 

A maximum sentence of 20 years is possible for the Australian, who has been charged with six counts. As soon as the remote access tool (RAT) was installed on the computer of a victim, the victim could be controlled.

Here below we have mentioned the common activities that could be performed:-

  • Steal personal information
  • Spy on victims via webcams and microphones

Several methods are used to install spyware, including phishing emails, which could be used to spread the spyware.

In order to disseminate the program in the hacker community, it was made available on hacker forums and on a dedicated website. There is a lifetime license for this program which can be purchased for $25 and includes customer service as part of the package.

AFP received information about a suspicious RAT from Palo Alto Networks and the FBI in 2017. Operation Cepheus was launched in response to that information.

Charges

  • One count of producing data with intent to commit a computer offense, contrary to section 478.4(1) of the Criminal Code Act 1995 (Cth);
  • Two counts of supplying data with intent to commit a computer offense, contrary to section 478.4(1) of the Criminal Code Act 1995 (Cth);
  • One count of aiding, abetting, counseling or procuring the commission of an offense, namely the unauthorized modification of data to cause impairment, contrary to sub-sections 11.2(1) and 477.2(1) of the Criminal Code Act 1995 (Cth); and
  • Two counts of dealing in the proceeds of crime to the value of $100,000 or more, contrary to section 400.4(1) of the Criminal Code Act 1995 (Cth).

Security Measures

Here below we have mentioned all the recommended security measures:-

  • Keep your operating system and security software up-to-date.
  • You need to make sure that you have enabled the firewall on your device.
  • The only apps and software you should download are those that come from trustworthy sources.
  • When you are not using your webcam, make sure that it is covered.
  • Make sure your data is backed up on a regular basis.
  • Whenever you are browsing the internet, you should be cautious.
  • If you come across a suspicious link, pop-up or dialog box, do not click on it.
  • Stay up to date with the latest version of your internet browser.
  • If a new window is opened or something is downloaded, configure your web browser to alert you.
  • If you receive an email that seems to be unexpected or suspicious, do not click on any links or attachments within the email.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Vulnerabilities in IBM Products Let Attackers Exploit & Launch DOS Attack

IBM has issued a security bulletin addressing critical vulnerabilities in its MQ Operator and...

BBTok Abuses Legitimate Windows Utility Command Tool to Stay Undetected

Cybercriminals in Latin America have increased their use of phishing scams targeting business transactions...

Predator Spyware Exploiting “one-click” & “zero-click” Flaws

Recent research indicates that the Predator spyware, once thought to be inactive due to...

Tropic Trooper Attacks Government Organizations to Steal Sensitive Data

Tropic Trooper (aka KeyBoy, Pirate Panda, and APT23) is a sophisticated cyberespionage APT group,...

Free Webinar

Decoding Compliance | What CISOs Need to Know

Non-compliance can result in substantial financial penalties, with average fines reaching up to $4.5 million for GDPR breaches alone.

Join us for an insightful panel discussion with Chandan Pani, CISO - LTIMindtree and Ashish Tandon, Founder & CEO – Indusface, as we explore the multifaceted role of compliance in securing modern enterprises.

Discussion points

The Role of Compliance
The Alphabet Soup of Compliance
Compliance
SaaS and Compliance
Indusface's Approach to Compliance

More like this

Predator Spyware Exploiting “one-click” & “zero-click” Flaws

Recent research indicates that the Predator spyware, once thought to be inactive due to...

Researchers Unpacked AvNeutralizer EDR Killer Used By FIN7 Group

FIN7 (aka Carbon Spider, ELBRUS, Sangria Tempest) is a Russian APT group that is...

Lazarus Hackers Attacking Job-Seekers to Deliver Javascript Malware

The Lazarus Group is one of the most notorious hacker groups linked to the...