Thursday, March 28, 2024

Two European Men Sentenced for Providing ‘Bulletproof Hosting’ to Hackers

Two European men were sentenced recently by a US court for giving Bulletproof Hosting services to the hackers, and all these blackhat services were used by the cybercriminals. These two European men are Estonian and Lithuanian natives, Pavel Stassi from Estonia, and Alexander Skorodumov from Lithuania. 

By exploiting these blackhat services hackers distribute the malware to organize attacks mainly on the companies and financial institutions that are organized in the United States.

According to the report, Stassi and Skorodumov both were members of an organization that provided “bulletproof hosting” services founded and run by two Russian citizens, Alexander Grichishkin and Andrey Skvortsov. 

Earlier, 30-year-old Pavel Stassi from Estonia and 33-year-old Alexander Skorodumov from Lithuania have already pleaded guilty. 

The hosting services they provided to hackers from 2009 to 2015 were in demand among the authors of malware targeting the financial institutions in the United States.

Here, the group leased the following things mentioned below:-

  • IP addresses
  • Servers
  • Domains 

All the above elements were used by the cybercriminals to spread malware like:-

  • Zeus
  • SpyEye
  • Citadel
  • Blackhole

In short, by using the above elements, malware, and malicious tools together they execute their attacks to hack the computers, generate botnets, and steal bank credentials.

Skorodumov, one of the leading admins of the hoster, set up and managed domains, IP addresses, and provided customers with support and advice on how they can optimize their malware and botnets.

While Stassi who mainly administered the marketing department has done several false advertisements and used stolen or fake information to register the hosting itself and even the organization’s financial accounts as well.

The defendants also helped their clients to avoid detection by law enforcement agencies by monitoring the blacklisting sites of technical infrastructure used to carry out cybercrime.

Apart from this, all these malware were used against American companies, and the attacks resulted in millions of dollars in losses. As a result, the former admins received 24 months (Stassi) and 48 months (Skorodumov) in prison.

Here, as a lead investigator, the FBI has played a key role and the FBI managed to do so with the help of law enforcement partners in the United Kingdom, Estonia, and Germany.

Looking for Best WAF Solutions for your web applications environment?? Register for Free WAF webinar & explore the experts thoughts and Choose the Best one.. Very limited seats available.. grab it here at ProPhaze.

Website

Latest articles

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus Labs, the leading Web3 security infrastructure provider, has unveiled a groundbreaking report highlighting...

Wireshark 4.2.4 Released: What’s New!

Wireshark stands as the undisputed leader, offering unparalleled tools for troubleshooting, analysis, development, and...

Zoom Unveils AI-Powered All-In-One AI Work Workplace

Zoom has taken a monumental leap forward by introducing Zoom Workplace, an all-encompassing AI-powered...

iPhone Users Beware! Darcula Phishing Service Attacking Via iMessage

Phishing allows hackers to exploit human vulnerabilities and trick users into revealing sensitive information...

2 Chrome Zero-Days Exploited at Pwn2Own 2024: Patch Now

Google has announced a crucial update to its Chrome browser, addressing several vulnerabilities, including...

The Moon Malware Hacked 6,000 ASUS Routers in 72hours to Use for Proxy

Black Lotus Labs discovered a multi-year campaign by TheMoon malware targeting vulnerable routers and...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Mitigating Vulnerability Types & 0-day Threats

Mitigating Vulnerability & 0-day Threats

Alert Fatigue that helps no one as security teams need to triage 100s of vulnerabilities.

  • The problem of vulnerability fatigue today
  • Difference between CVSS-specific vulnerability vs risk-based vulnerability
  • Evaluating vulnerabilities based on the business impact/risk
  • Automation to reduce alert fatigue and enhance security posture significantly

Related Articles