Saturday, December 2, 2023

24-Year-Old Australian Hacker Arrested For Creating and Selling Spyware

A 24-year-old man was arrested and charged with creating and selling spyware, triggering a global law enforcement operation. As a result, the AFP has charged a number of criminals and domestic violence perpetrators who purchase these illicit tools.

Since the age of 15, this Australian hacker has been creating RAT (Remote Access Trojan). Additionally, the Australian Federal Police also identified the victims along with the offenders in this operation.

Imminent Monitor (IM) is spyware that was sold through a network of individuals that Frankston man engaged with. More than 14500 individuals in 128 countries have purchased this illicit tool from the hacker so far. 

A report published by the Australian Federal Police indicates that 201 people bought the RAT in Australia. A subset of IM RAT buyers in Australia (14.2%) are domestic violence defendants.

There is one purchaser on this list who is also on the register of child sex offenders. There were 14 individuals identified as buyers of RATs and 11, of them, purchased the RATs either within two years of receiving a DVO or during the active period of their DVO.

In the time since the campaign began in 2013, the app developer has earned anywhere from $300,000 to $400,000, mostly used for food delivery as well as other ‘consumables’ that are needed for the campaign. 

A maximum sentence of 20 years is possible for the Australian, who has been charged with six counts. As soon as the remote access tool (RAT) was installed on the computer of a victim, the victim could be controlled.

Here below we have mentioned the common activities that could be performed:-

  • Steal personal information
  • Spy on victims via webcams and microphones

Several methods are used to install spyware, including phishing emails, which could be used to spread the spyware.

In order to disseminate the program in the hacker community, it was made available on hacker forums and on a dedicated website. There is a lifetime license for this program which can be purchased for $25 and includes customer service as part of the package.

AFP received information about a suspicious RAT from Palo Alto Networks and the FBI in 2017. Operation Cepheus was launched in response to that information.


  • One count of producing data with intent to commit a computer offense, contrary to section 478.4(1) of the Criminal Code Act 1995 (Cth);
  • Two counts of supplying data with intent to commit a computer offense, contrary to section 478.4(1) of the Criminal Code Act 1995 (Cth);
  • One count of aiding, abetting, counseling or procuring the commission of an offense, namely the unauthorized modification of data to cause impairment, contrary to sub-sections 11.2(1) and 477.2(1) of the Criminal Code Act 1995 (Cth); and
  • Two counts of dealing in the proceeds of crime to the value of $100,000 or more, contrary to section 400.4(1) of the Criminal Code Act 1995 (Cth).

Security Measures

Here below we have mentioned all the recommended security measures:-

  • Keep your operating system and security software up-to-date.
  • You need to make sure that you have enabled the firewall on your device.
  • The only apps and software you should download are those that come from trustworthy sources.
  • When you are not using your webcam, make sure that it is covered.
  • Make sure your data is backed up on a regular basis.
  • Whenever you are browsing the internet, you should be cautious.
  • If you come across a suspicious link, pop-up or dialog box, do not click on it.
  • Stay up to date with the latest version of your internet browser.
  • If a new window is opened or something is downloaded, configure your web browser to alert you.
  • If you receive an email that seems to be unexpected or suspicious, do not click on any links or attachments within the email.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.


Latest articles

Active Attacks Targeting Google Chrome & ownCloud Flaws: CISA Warns

The CISA announced two known exploited vulnerabilities active attacks targeting Google Chrome & own...

Cactus Ransomware Exploiting Qlik Sense code execution Vulnerability

A new Cactus Ransomware was exploited in the code execution vulnerability to Qlik Sense...

Hackers Bypass Antivirus with ScrubCrypt Tool to Install RedLine Malware

The ScrubCrypt obfuscation tool has been discovered to be utilized in attacks to disseminate the RedLine Stealer...

Hotel’s Hacked Logins Let Attacker Steal Guest Credit Cards

According to a recent report by Secureworks, a well-planned and advanced phishing attack was...

Critical Zoom Vulnerability Let Attackers Take Over Meetings

Zoom, the most widely used video conferencing platform has been discovered with a critical...

Hackers Using Weaponized Invoice to Deliver LUMMA Malware

Hackers use weaponized invoices to exploit trust in financial transactions, embedding malware or malicious...

US-Seized Crypto Currency Mixer Used by North Korean Lazarus Hackers

The U.S. Treasury Department sanctioned the famous cryptocurrency mixer Sinbad after it was claimed...
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

API Attack Simulation Webinar

Live API Attack Simulation

In the upcoming webinar, Karthik Krishnamoorthy, CTO and Vivek Gopalan, VP of Products at Indusface demonstrate how APIs could be hacked.The session will cover:an exploit of OWASP API Top 10 vulnerability, a brute force account take-over (ATO) attack on API, a DDoS attack on an API, how a WAAP could bolster security over an API gateway

Related Articles