Categories: Internet

Europol Take Down the Oldest Rex Mundi Hacker Group

The Internet oldest hacker group Rex Mundi was taken down supported by the Europol and the Joint Cybercrime Action Taskforce (J-CAT).

Rex Mundi hacker group was active since at least 2012, they cracked into several organizations and blackmail organizations demanding ransom.

They involved in the chain of attacks and contains a long list of victims AmeriCash Advance, Webassur, Drake International, Buy Way, Hoststar, Web solutions.it, Numericable, Habeas, AlfaNet, Domino’s Pizza, and the Swiss bank Banque Cantonale de Geneve (BCGE).

In last may 2017 a British company was the victim of the hacker group, a large amount of customer data has been compromised, the attack was claimed by “Rex Mundi” and they shared a number of login details to the company to prove they had access to the data.

“The French-speaking person also demanded a ransom of either almost EUR 580 000 for the non-disclosure of the customer data or over EUR 825 000 for information on the security breach and how to handle it. For each day the company failed to pay, there would be a ransom of EUR 210 000.”

With the information provided by Metropolitan Police in the UK, the international operation has been started. Five people from the hacker group were arrested by French authorities in June 2017 and the main suspect admitted that he “involved in blackmail but hired the services of a hacker on the dark web to carry out the cyber-attack.” reads Europol statement.

The French police arrested other two Hackers in October 2017 and the last participant in the group was also French national with coding skills and he was arrested in Thailand.

“As indicated in the report, for such financially motivated extortion attempts, attacks are typically directed at medium-sized or large enterprises, with payment almost exclusively demanded in Bitcoins.”

Also Read

1. Hackers Used Default/weakest Credentials for IoT Botnet Command and Control Server
2. China Government Hackers Compromised U.S Navy Contractor Computers & Stolen 614 gigabytes of Highly Sensitive Data.
3. Hackers Now Switching to Telegram as a Secret Communication Medium for Underground Cybercrimes

Gurubaran

Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Recent Posts

Zero-Trust Policy Bypass Enables Exploitation of Vulnerabilities and Manipulation of NHI Secrets

A new project has exposed a critical attack vector that exploits protocol vulnerabilities to disrupt…

2 hours ago

Threat Actor Sells Burger King Backup System RCE Vulnerability for $4,000

A threat actor known as #LongNight has reportedly put up for sale remote code execution…

2 hours ago

Chinese Nexus Hackers Exploit Ivanti Endpoint Manager Mobile Vulnerability

Ivanti disclosed two critical vulnerabilities, identified as CVE-2025-4427 and CVE-2025-4428, affecting Ivanti Endpoint Manager Mobile…

2 hours ago

Hackers Target macOS Users with Fake Ledger Apps to Deploy Malware

Hackers are increasingly targeting macOS users with malicious clones of Ledger Live, the popular application…

2 hours ago

EU Targets Stark Industries in Cyberattack Sanctions Crackdown

The European Union has escalated its response to Russia’s ongoing campaign of hybrid threats, announcing…

6 hours ago

Venice.ai’s Unrestricted Access Sparks Concerns Over AI-Driven Cyber Threats

Venice.ai has rapidly emerged as a disruptive force in the AI landscape, positioning itself as…

6 hours ago