Friday, July 19, 2024
EHA

Two European Men Sentenced for Providing ‘Bulletproof Hosting’ to Hackers

Two European men were sentenced recently by a US court for giving Bulletproof Hosting services to the hackers, and all these blackhat services were used by the cybercriminals. These two European men are Estonian and Lithuanian natives, Pavel Stassi from Estonia, and Alexander Skorodumov from Lithuania. 

By exploiting these blackhat services hackers distribute the malware to organize attacks mainly on the companies and financial institutions that are organized in the United States.

According to the report, Stassi and Skorodumov both were members of an organization that provided “bulletproof hosting” services founded and run by two Russian citizens, Alexander Grichishkin and Andrey Skvortsov. 

Earlier, 30-year-old Pavel Stassi from Estonia and 33-year-old Alexander Skorodumov from Lithuania have already pleaded guilty. 

The hosting services they provided to hackers from 2009 to 2015 were in demand among the authors of malware targeting the financial institutions in the United States.

Here, the group leased the following things mentioned below:-

  • IP addresses
  • Servers
  • Domains 

All the above elements were used by the cybercriminals to spread malware like:-

  • Zeus
  • SpyEye
  • Citadel
  • Blackhole

In short, by using the above elements, malware, and malicious tools together they execute their attacks to hack the computers, generate botnets, and steal bank credentials.

Skorodumov, one of the leading admins of the hoster, set up and managed domains, IP addresses, and provided customers with support and advice on how they can optimize their malware and botnets.

While Stassi who mainly administered the marketing department has done several false advertisements and used stolen or fake information to register the hosting itself and even the organization’s financial accounts as well.

The defendants also helped their clients to avoid detection by law enforcement agencies by monitoring the blacklisting sites of technical infrastructure used to carry out cybercrime.

Apart from this, all these malware were used against American companies, and the attacks resulted in millions of dollars in losses. As a result, the former admins received 24 months (Stassi) and 48 months (Skorodumov) in prison.

Here, as a lead investigator, the FBI has played a key role and the FBI managed to do so with the help of law enforcement partners in the United Kingdom, Estonia, and Germany.

Looking for Best WAF Solutions for your web applications environment?? Register for Free WAF webinar & explore the experts thoughts and Choose the Best one.. Very limited seats available.. grab it here at .

Website

Latest articles

Octo Tempest Know for Attacking VMWare ESXi Servers Added RansomHub & Qilin to Its Arsenal

Threat actors often attack VMware ESXi servers since they accommodate many virtual machines, which...

TAG-100 Actors Using Open-Source Tools To Attack Gov & Private Orgs

Hackers exploit open-source tools to execute attacks because they are readily available, well-documented, and...

macOS Users Beware Of Weaponized Meeting App From North Korean Hackers

Meeting apps are often targeted and turned into weapons by hackers as they are...

Hackers Exploiting Legitimate RMM Tools With BugSleep Malware

Since October 2023, MuddyWater, which is an Iranian threat group linked to MOIS, has...

Cybercriminals Exploit Attack on Donald Trump for Crypto Scams

Researchers at Bitdefender Labs remain ever-vigilant, informing users about the latest scams and internet...

New TE.0 HTTP Request Smuggling Flaw Impacts Google Cloud Websites

HTTP Request Smuggling is a flaw in web security that is derived from variations...

Volcano Demon Group Attacking Organizations With LukaLocker Ransomware

The Volcano Demon group has been discovered spreading a new ransomware called LukaLocker, which...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Free Webinar

Low Rate DDoS Attack

9 of 10 sites on the AppTrana network have faced a DDoS attack in the last 30 days.
Some DDoS attacks could readily be blocked by rate-limiting, IP reputation checks and other basic mitigation methods.
More than 50% of the DDoS attacks are employing botnets to send slow DDoS attacks where millions of IPs are being employed to send one or two requests per minute..
Key takeaways include:

  • The mechanics of a low-DDoS attack
  • Fundamentals of behavioural AI and rate-limiting
  • Surgical mitigation actions to minimize false positives
  • Role of managed services in DDoS monitoring

Related Articles