Tuesday, July 23, 2024
EHA

US Dismantled Sophisticated Warzone RAT, Key Operators Arrested

Federal authorities have dismantled a major malware operation, seizing online marketplaces and being involved in its sale and support. 

This international effort targeted a service known as “Warzone RAT,” a powerful tool cybercriminals use to remotely access and steal data from victims’ computers.

Federal authorities in Boston shut down websites used to sell the malware, effectively disrupting their operations.

Indictments were unsealed against individuals in Malta and Nigeria accused of selling the malware and aiding cybercriminals.

Document
Live Account Takeover Attack Simulation

How do Hackers Bypass 2FA?

Live attack simulation Webinar demonstrates various ways in which account takeover can happen and practices to protect your websites and APIs against ATO attacks.

The Accusations

In a joint effort, the Malta Police Force and the Office of the Attorney General of Malta orchestrated a coordinated operation resulting in the arrest of Daniel Meli, 27, from Zabbar, Malta, on February 7. 

The charges include causing unauthorized damage to protected computers, illegally selling and advertising an electronic interception device, and involvement in a conspiracy to commit various computer intrusion offenses.

Nigerian citizen Prince Onyeoziri Odinakachi, 31, faced indictment for computer intrusion, including gaining authorized access and causing unauthorized damage to protected.

Documents indicate that Odinakachi offered online customer support to users of the Warzone RAT malware.

“Daniel Meli will no longer escape accountability for his actions selling malware,” said U.S. Attorney Ryan K. Buchanan for the Northern District of Georgia. 

“This action highlights the FBI’s commitment to disrupting cybercriminal actors and taking down their infrastructure,” said Assistant Director Brian Vorndran of the FBI’s Cyber Division. 

The U.S. The Justice Department’s Office of International Affairs applauds the vital support of a multinational coalition in dismantling the Warzone RAT infrastructure. 

This collective effort involved the FBI (Boston & Atlanta) and authorities in Malta, Australia, Croatia, Netherlands, Finland, Germany, Japan, Nigeria, Romania, and Canada. 

Individuals impacted by a Warzone RAT compromise are strongly encouraged to file a report with the FBI.

Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.

Website

Latest articles

Beware Of Dating Apps Exposing Your Personal And Location Details To Cyber Criminals

Threat actors often attack dating apps to steal personal data, including sensitive data and...

Hackers Abusing Google Cloud For Phishing

Threat actors often attack cloud services for several illicit purposes. Google Cloud is targeted...

Two Russian Nationals Charged for Cyber Attacks against U.S. Critical Infrastructure

The United States has designated Yuliya Vladimirovna Pankratova and Denis Olegovich Degtyarenko, two members...

Threat Actors Taking Advantage of CrowdStrike BSOD Bug to Deliver Malware

Threat actors have been found exploiting a recently discovered bug in CrowdStrike's software that...

NCA Shut’s Down the Most Popular “digitalstress” DDoS-for-hire Service

The National Crime Agency (NCA) has successfully infiltrated and dismantled one of the most...

Play Ransomware’s Linux Variant Attacking VMware ESXi Servers

A new Linux variant of Play ransomware targets VMware ESXi environments, which encrypts virtual...

SonicOS IPSec VPN Vulnerability Let Attackers Cause Dos Condition

SonicWall has disclosed a critical heap-based buffer overflow vulnerability in its SonicOS IPSec VPN....
Guru baran
Guru baranhttps://gbhackers.com
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Free Webinar

Low Rate DDoS Attack

9 of 10 sites on the AppTrana network have faced a DDoS attack in the last 30 days.
Some DDoS attacks could readily be blocked by rate-limiting, IP reputation checks and other basic mitigation methods.
More than 50% of the DDoS attacks are employing botnets to send slow DDoS attacks where millions of IPs are being employed to send one or two requests per minute..
Key takeaways include:

  • The mechanics of a low-DDoS attack
  • Fundamentals of behavioural AI and rate-limiting
  • Surgical mitigation actions to minimize false positives
  • Role of managed services in DDoS monitoring

Related Articles