A naukri.com initiative
Wired
4d
248
Image Credit: Wired
Feds Charge 16 Russians Allegedly Tied to Botnets Used in Ransomware, Cyberattacks, and Spying
- The US Department of Justice has indicted 16 Russian nationals in connection with a malware operation known as DanaBot, which infected at least 300,000 machines worldwide.
- The operation allegedly involved activities ranging from ransomware attacks to cyber espionage against military and government targets.
- In addition to for-profit criminal hacking, DanaBot was used in espionage against military, government, and NGO targets.
- The malware initially functioned as a banking trojan but evolved to be used for various criminal activities, including ransomware and espionage.
- DanaBot was sold in an 'affiliate' model to hacker groups and was later used in a software supply chain attack affecting financial services, transportation, and technology sectors.
- The malware was also used in state-sponsored hacking campaigns and espionage operations targeting Western government officials and Ukrainian entities.
- Despite the takedown, the operators of DanaBot remain at large, highlighting the evolving landscape of cybercrime involving Russian state hackers.
- The disruption of DanaBot represents a significant milestone in combating Russian-origin hacking, impacting their monetization and creating disruption in their operations.
- The overlap between cybercriminal operators and Russian government entities is highlighted by DanaBot, showcasing the intersection of e-crime tooling and espionage purposes.
- The case of DanaBot illustrates the blurred lines between cybercrime, state-sponsored cyberwarfare, and espionage within the Russian hacker ecosystem.
Read Full Article
14 Likes
For uninterrupted reading, download the app