Man
Professional
- Messages
- 3,085
- Reaction score
- 623
- Points
- 113
Since 2018, the defendants, using encryption viruses developed by them, have attacked the servers of the world's leading companies. During the international police operation, law enforcement officers conducted more than 30 searches and suppressed the activities of the group.
Operatives of the Cyber Police Department and investigators of the Main Investigation Department of the National Police, under the procedural guidance of the Prosecutor General's Office, conducted a multi-level special operation to neutralize an organized criminal group.
The Joint Investigation Team (JIT) also included colleagues from Europol (the EU's law enforcement agency for combating international organised crime) and Eurojust (the agency coordinating the EU's judiciary).
"Attackers have attacked the world's most powerful companies in France, Norway, Germany, the Netherlands, Canada and the United States since 2018. As a result of many months of painstaking work, Ukrainian law enforcement officers, with the assistance of colleagues from the United States, Norway, the Netherlands, Germany and France, identified the 32-year-old leader of the hacker group and his four most active accomplices," said Yuriy Vykhodets, head of the Cyber Police Department.
For hacker attacks, the defendants used independently developed malicious software. In particular, several ransomware viruses.
First of all, the attackers hacked the accounts of employees of the victim enterprise using information from open sources and social engineering methods. From the assigned accounts, hackers distributed malicious program code in the corporate ecosystem. In this way, the attackers gained access to the servers and stole information from them.
After that, the data on the victims' computers was encrypted and rendered unusable. For the decryption of information, members of the international hacker group demanded millions in payments in cryptocurrency.
For example, for the resumption of the servers of one of the leading chemical companies in the Netherlands, the attackers ordered to transfer 450 BTC (bitcoins) to a controlled crypto wallet, which is equivalent to 48 million hryvnias.
The men developed and updated malicious software, carried out hacker attacks, looked for so-called drops with crypto wallets to receive ransom and distributed the "earnings" among other members of the group.
It was established that over several years of criminal activity, the attackers encrypted more than 1000 servers of world enterprises and caused damage in the amount of more than 3 billion hryvnias in terms of national currency.
More than 20 law enforcement officers from Norway, France, Germany and the US Federal Bureau of Investigation arrived in the capital to neutralize the criminal group and analyze digital data. On the territory of the Netherlands, Europol created a special working group and VCP (Virtual Command Post) for the immediate analysis of information obtained during investigative actions on the territory of Ukraine.
With the power support of the special forces of the TOR, law enforcement officers conducted more than 30 authorized searches in the premises and cars of the defendants in the Kyiv region, as well as in the Cherkasy, Rivne and Vinnytsia regions.
Computer equipment, cars, bank and SIM cards, "draft" records, as well as dozens of electronic media and other evidence of illegal activities were seized. In particular, almost 4 million hryvnias and cryptocurrency assets. The issue of arrest of the seized property is being resolved.
Investigators of the Main Investigation Department of the National Police opened criminal proceedings under Part 2 of Article 361 (Unauthorized interference in the work of information (automated), electronic communication, information and communication systems, electronic communication networks), Part 2 of Article 361-1 (Creation for the purpose of illegal use, distribution or sale of malicious software or hardware, as well as their distribution or sale), Part 2 of Article 361-1. 4 of Article 189 (Extortion) of the Criminal Code of Ukraine. Three defendants were notified of suspicion.
Investigative actions are underway to establish the whereabouts of other members of the group. Additional qualification is possible based on the results.
• Video:
• Source: https://www.npu.gov.ua/news/ponad-3...w0VXaDhe0VRAwjZn24oVvR54jsGoJ4NpVYJXdjpQg6FG8
• Source: https://www.europol.europa.eu/media...ansomware-group-in-ukraine-amidst-ongoing-war
-------
Under the procedural guidance of prosecutors of the Prosecutor General's Office, the pre-trial investigation has been completed and the materials of the criminal proceedings on the hacking activities of an organized criminal group have been opened to the defense.
The investigation found that the attackers have attacked the world's most powerful companies in France, Norway, Germany, the Netherlands, Canada and the United States since 2018. The men developed and used malicious software, carried out hacker attacks.
First of all, they hacked into the accounts of the company's employees using open source information and social engineering methods. From the assigned accounts, hackers distributed malicious program code in the corporate ecosystem. In this way, they gained access to the servers and stole information from them.
After that, the data on the victims' computers was encrypted and became unusable. For the decryption of information, members of the international hacker group demanded millions in payments in cryptocurrency.
It was established that over several years of criminal activity, the attackers encrypted more than 1000 servers of world enterprises and caused damage in the amount of more than UAH 3 billion in terms of the national currency.
The investigation was carried out with the participation of foreign colleagues of the JIT Joint Investigation Team from Norway, the Netherlands and France, as well as law enforcement officers from Germany and the US Federal Bureau of Investigation, specialists from Europol and Eurojust.
Law enforcement officers conducted more than 80 authorized searches in the premises and cars of the defendants in the Kyiv region, as well as in the Cherkasy, Rivne and Vinnytsia regions.
Computer equipment, bank and SIM cards, "draft" records, dozens of electronic media, almost UAH 4 million and cryptocurrency assets were found and seized.
Later, the police, together with foreign colleagues, found crypto assets worth more than UAH 24 million in equivalent, apartments, houses, 9 luxury cars and 24 land plots with a total area of almost 12 hectares, belonging to members of the hacker group. At the request of the investigation, the court seized the property.
The pre-trial investigation was carried out with the participation of investigators of the Main Investigation Department of the National Police of Ukraine and operational support of the Cyber Police Department on the fact of unauthorized interference in the work of information, information and communication systems, electronic communication networks; creation, distribution or sale of malicious software or hardware for the purpose of illegal use, distribution or sale; and extortion (Part 2 of Article 361, Part 2 of Article 361-1, Part 4 of Article 189 of the Criminal Code of Ukraine).
Two suspects were put on the state and international wanted list.
• Source: https://gp.gov.ua/ua/posts/zaversen...upi-yaka-atakuvala-providni-svitovi-kompaniyi
---------
A member of an international hacker group that attacked leading companies in Europe and the United States will be tried
Prosecutors of the Prosecutor General's Office sent an indictment to the court on one of the episodes in criminal proceedings regarding the hacking activities of an organized criminal group.
A joint investigation with the competent authorities of the Kingdom of Norway and the French Republic has established that hackers attacked a Norwegian metallurgical company using developed malicious software.
First of all, they hacked into the accounts of the company's employees using open source information and social engineering methods. From the assigned accounts, hackers distributed malicious program code in the corporate ecosystem. In this way, they gained access to the servers and stole information from them.
After that, the data on the victim's computers was encrypted and became unusable. For the decryption of information, members of the international hacker group demanded millions in payments in cryptocurrency.
Using ransomware, they blocked the company's servers and demanded 2500 bitcoins for decrypting the virus, which is equivalent to UAH 348 million.
The amount of property damage caused to the company due to the temporary suspension of its activities is 8.9 million euros.
The pre-trial investigation was carried out with the participation of investigators of the Main Investigative Directorate of the National Police of Ukraine and operational support of the Cyber Police Department on the fact of unauthorized interference in the work of information, information and communication systems, electronic communication networks; creation, distribution or sale of malicious software or hardware for the purpose of illegal use, distribution or sale; and extortion (Part 2 of Article 361, Part 2 of Article 361-1, Part 4 of Article 189 of the Criminal Code of Ukraine).
Two more members of the hacker group were put on the state and international wanted list.
In total, within the framework of criminal proceedings, the facts of attacks by a hacker group on companies in France, Norway, Germany, the Netherlands, Canada and the United States, starting from 2018, are being investigated.
Over several years of criminal activity, they have encrypted more than 1000 servers of global enterprises and caused damage in the amount of more than UAH 3 billion in terms of national currency.
The investigation was carried out with the participation of foreign colleagues of the JIT Joint Investigation Team from Norway, the Netherlands and France, as well as law enforcement officers from Germany and the US Federal Bureau of Investigation, specialists from Europol and Eurojust.
• Source: https://gp.gov.ua/ua/posts/suditimu...vala-providni-kompaniyi-krayin-jevropi-ta-ssa
Operatives of the Cyber Police Department and investigators of the Main Investigation Department of the National Police, under the procedural guidance of the Prosecutor General's Office, conducted a multi-level special operation to neutralize an organized criminal group.
The Joint Investigation Team (JIT) also included colleagues from Europol (the EU's law enforcement agency for combating international organised crime) and Eurojust (the agency coordinating the EU's judiciary).
"Attackers have attacked the world's most powerful companies in France, Norway, Germany, the Netherlands, Canada and the United States since 2018. As a result of many months of painstaking work, Ukrainian law enforcement officers, with the assistance of colleagues from the United States, Norway, the Netherlands, Germany and France, identified the 32-year-old leader of the hacker group and his four most active accomplices," said Yuriy Vykhodets, head of the Cyber Police Department.
For hacker attacks, the defendants used independently developed malicious software. In particular, several ransomware viruses.
First of all, the attackers hacked the accounts of employees of the victim enterprise using information from open sources and social engineering methods. From the assigned accounts, hackers distributed malicious program code in the corporate ecosystem. In this way, the attackers gained access to the servers and stole information from them.
After that, the data on the victims' computers was encrypted and rendered unusable. For the decryption of information, members of the international hacker group demanded millions in payments in cryptocurrency.
For example, for the resumption of the servers of one of the leading chemical companies in the Netherlands, the attackers ordered to transfer 450 BTC (bitcoins) to a controlled crypto wallet, which is equivalent to 48 million hryvnias.
The men developed and updated malicious software, carried out hacker attacks, looked for so-called drops with crypto wallets to receive ransom and distributed the "earnings" among other members of the group.
It was established that over several years of criminal activity, the attackers encrypted more than 1000 servers of world enterprises and caused damage in the amount of more than 3 billion hryvnias in terms of national currency.
More than 20 law enforcement officers from Norway, France, Germany and the US Federal Bureau of Investigation arrived in the capital to neutralize the criminal group and analyze digital data. On the territory of the Netherlands, Europol created a special working group and VCP (Virtual Command Post) for the immediate analysis of information obtained during investigative actions on the territory of Ukraine.
With the power support of the special forces of the TOR, law enforcement officers conducted more than 30 authorized searches in the premises and cars of the defendants in the Kyiv region, as well as in the Cherkasy, Rivne and Vinnytsia regions.
Computer equipment, cars, bank and SIM cards, "draft" records, as well as dozens of electronic media and other evidence of illegal activities were seized. In particular, almost 4 million hryvnias and cryptocurrency assets. The issue of arrest of the seized property is being resolved.
Investigators of the Main Investigation Department of the National Police opened criminal proceedings under Part 2 of Article 361 (Unauthorized interference in the work of information (automated), electronic communication, information and communication systems, electronic communication networks), Part 2 of Article 361-1 (Creation for the purpose of illegal use, distribution or sale of malicious software or hardware, as well as their distribution or sale), Part 2 of Article 361-1. 4 of Article 189 (Extortion) of the Criminal Code of Ukraine. Three defendants were notified of suspicion.
Investigative actions are underway to establish the whereabouts of other members of the group. Additional qualification is possible based on the results.
• Video:
• Source: https://www.npu.gov.ua/news/ponad-3...w0VXaDhe0VRAwjZn24oVvR54jsGoJ4NpVYJXdjpQg6FG8
• Source: https://www.europol.europa.eu/media...ansomware-group-in-ukraine-amidst-ongoing-war
-------
Under the procedural guidance of prosecutors of the Prosecutor General's Office, the pre-trial investigation has been completed and the materials of the criminal proceedings on the hacking activities of an organized criminal group have been opened to the defense.
The investigation found that the attackers have attacked the world's most powerful companies in France, Norway, Germany, the Netherlands, Canada and the United States since 2018. The men developed and used malicious software, carried out hacker attacks.
First of all, they hacked into the accounts of the company's employees using open source information and social engineering methods. From the assigned accounts, hackers distributed malicious program code in the corporate ecosystem. In this way, they gained access to the servers and stole information from them.
After that, the data on the victims' computers was encrypted and became unusable. For the decryption of information, members of the international hacker group demanded millions in payments in cryptocurrency.
It was established that over several years of criminal activity, the attackers encrypted more than 1000 servers of world enterprises and caused damage in the amount of more than UAH 3 billion in terms of the national currency.
The investigation was carried out with the participation of foreign colleagues of the JIT Joint Investigation Team from Norway, the Netherlands and France, as well as law enforcement officers from Germany and the US Federal Bureau of Investigation, specialists from Europol and Eurojust.
Law enforcement officers conducted more than 80 authorized searches in the premises and cars of the defendants in the Kyiv region, as well as in the Cherkasy, Rivne and Vinnytsia regions.
Computer equipment, bank and SIM cards, "draft" records, dozens of electronic media, almost UAH 4 million and cryptocurrency assets were found and seized.
Later, the police, together with foreign colleagues, found crypto assets worth more than UAH 24 million in equivalent, apartments, houses, 9 luxury cars and 24 land plots with a total area of almost 12 hectares, belonging to members of the hacker group. At the request of the investigation, the court seized the property.
The pre-trial investigation was carried out with the participation of investigators of the Main Investigation Department of the National Police of Ukraine and operational support of the Cyber Police Department on the fact of unauthorized interference in the work of information, information and communication systems, electronic communication networks; creation, distribution or sale of malicious software or hardware for the purpose of illegal use, distribution or sale; and extortion (Part 2 of Article 361, Part 2 of Article 361-1, Part 4 of Article 189 of the Criminal Code of Ukraine).
Two suspects were put on the state and international wanted list.
• Source: https://gp.gov.ua/ua/posts/zaversen...upi-yaka-atakuvala-providni-svitovi-kompaniyi
---------
A member of an international hacker group that attacked leading companies in Europe and the United States will be tried
Prosecutors of the Prosecutor General's Office sent an indictment to the court on one of the episodes in criminal proceedings regarding the hacking activities of an organized criminal group.
A joint investigation with the competent authorities of the Kingdom of Norway and the French Republic has established that hackers attacked a Norwegian metallurgical company using developed malicious software.
First of all, they hacked into the accounts of the company's employees using open source information and social engineering methods. From the assigned accounts, hackers distributed malicious program code in the corporate ecosystem. In this way, they gained access to the servers and stole information from them.
After that, the data on the victim's computers was encrypted and became unusable. For the decryption of information, members of the international hacker group demanded millions in payments in cryptocurrency.
Using ransomware, they blocked the company's servers and demanded 2500 bitcoins for decrypting the virus, which is equivalent to UAH 348 million.
The amount of property damage caused to the company due to the temporary suspension of its activities is 8.9 million euros.
The pre-trial investigation was carried out with the participation of investigators of the Main Investigative Directorate of the National Police of Ukraine and operational support of the Cyber Police Department on the fact of unauthorized interference in the work of information, information and communication systems, electronic communication networks; creation, distribution or sale of malicious software or hardware for the purpose of illegal use, distribution or sale; and extortion (Part 2 of Article 361, Part 2 of Article 361-1, Part 4 of Article 189 of the Criminal Code of Ukraine).
Two more members of the hacker group were put on the state and international wanted list.
In total, within the framework of criminal proceedings, the facts of attacks by a hacker group on companies in France, Norway, Germany, the Netherlands, Canada and the United States, starting from 2018, are being investigated.
Over several years of criminal activity, they have encrypted more than 1000 servers of global enterprises and caused damage in the amount of more than UAH 3 billion in terms of national currency.
The investigation was carried out with the participation of foreign colleagues of the JIT Joint Investigation Team from Norway, the Netherlands and France, as well as law enforcement officers from Germany and the US Federal Bureau of Investigation, specialists from Europol and Eurojust.
• Source: https://gp.gov.ua/ua/posts/suditimu...vala-providni-kompaniyi-krayin-jevropi-ta-ssa
