Monday, March 10, 2025
Homecyber securityUS Dismantled Sophisticated Warzone RAT, Key Operators Arrested

US Dismantled Sophisticated Warzone RAT, Key Operators Arrested

Published on

SIEM as a Service

Follow Us on Google News

Federal authorities have dismantled a major malware operation, seizing online marketplaces and being involved in its sale and support. 

This international effort targeted a service known as “Warzone RAT,” a powerful tool cybercriminals use to remotely access and steal data from victims’ computers.

Federal authorities in Boston shut down websites used to sell the malware, effectively disrupting their operations.

Indictments were unsealed against individuals in Malta and Nigeria accused of selling the malware and aiding cybercriminals.

Document
Live Account Takeover Attack Simulation

How do Hackers Bypass 2FA?

Live attack simulation Webinar demonstrates various ways in which account takeover can happen and practices to protect your websites and APIs against ATO attacks.

The Accusations

In a joint effort, the Malta Police Force and the Office of the Attorney General of Malta orchestrated a coordinated operation resulting in the arrest of Daniel Meli, 27, from Zabbar, Malta, on February 7. 

The charges include causing unauthorized damage to protected computers, illegally selling and advertising an electronic interception device, and involvement in a conspiracy to commit various computer intrusion offenses.

Nigerian citizen Prince Onyeoziri Odinakachi, 31, faced indictment for computer intrusion, including gaining authorized access and causing unauthorized damage to protected.

Documents indicate that Odinakachi offered online customer support to users of the Warzone RAT malware.

“Daniel Meli will no longer escape accountability for his actions selling malware,” said U.S. Attorney Ryan K. Buchanan for the Northern District of Georgia. 

“This action highlights the FBI’s commitment to disrupting cybercriminal actors and taking down their infrastructure,” said Assistant Director Brian Vorndran of the FBI’s Cyber Division. 

The U.S. The Justice Department’s Office of International Affairs applauds the vital support of a multinational coalition in dismantling the Warzone RAT infrastructure. 

This collective effort involved the FBI (Boston & Atlanta) and authorities in Malta, Australia, Croatia, Netherlands, Finland, Germany, Japan, Nigeria, Romania, and Canada. 

Individuals impacted by a Warzone RAT compromise are strongly encouraged to file a report with the FBI.

Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Critical Microsoft’s Time Travel Debugging Tool Vulnerability Let Attackers Mask Detection

Microsoft’s Time Travel Debugging (TTD) framework, a powerful tool for recording and replaying Windows...

ServiceNow Acquires Moveworks for $2.85 Billion to Boost AI Capabilities

In a landmark move to strengthen its position in the rapidly evolving artificial intelligence...

Apple iOS 18.4 Beta 3 Released – What’s New!

Apple released iOS 18.4 Beta 3 on March 10, 2025, for developers, with a...

Researcher Hacks Embedded Devices to Uncover Firmware Secrets

In a recent exploration of embedded device hacking, a researcher demonstrated how to extract...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

Critical Microsoft’s Time Travel Debugging Tool Vulnerability Let Attackers Mask Detection

Microsoft’s Time Travel Debugging (TTD) framework, a powerful tool for recording and replaying Windows...

ServiceNow Acquires Moveworks for $2.85 Billion to Boost AI Capabilities

In a landmark move to strengthen its position in the rapidly evolving artificial intelligence...

Apple iOS 18.4 Beta 3 Released – What’s New!

Apple released iOS 18.4 Beta 3 on March 10, 2025, for developers, with a...