Brother
Professional
- Messages
- 2,590
- Reaction score
- 539
- Points
- 113
Vladimir Dunaev's long-term work has come to its logical conclusion.
Former Trickbot developer Vladimir Dunaev from the Amur region of Russia was sentenced to 5 years and 4 months in prison in the United States for his role in infecting American hospitals and businesses with ransomware and other malware, which cost victims tens of millions of dollars in losses. Dunaev pleaded guilty in court on November 30 to two counts: conspiracy to commit computer fraud and conspiracy to commit fraud using electronic means of communication.
From June 2016 to June 2021, Dunaev worked as a developer in a criminal group, providing "specialized services and technical skills". Its tasks included attracting other developers, purchasing and managing servers for deploying and running Trickbot malware, encrypting the virus to avoid detection by antivirus programs, distributing spam and phishing attacks, and laundering stolen funds. Dunaev also added the ability to steal credentials from victims ' browsers.
In particular, Dunaev developed modifications for the popular Firefox and Chrome browsers, using the open code bases of each browser, which allowed Trickbot participants to steal passwords, credentials and other information.
According to court documents, the group defrauded victims of more than $3.4 million between October 2018 and February 2021 alone. According to the National Crime Agency of Great Britain, the gang extorted at least $180 million. from people and organizations around the world.
Dunaev was extradited to the United States from South Korea in 2021. In the original indictment, Dunaev and six others were accused of developing, deploying, managing, and profiting from Trickbot. In June, one of the six suspects — the administrator of the Trickbot malware, a Latvian citizen Alla Witte-pleaded guilty to conspiracy to commit computer fraud and was sentenced to 2 years and 8 months in prison.
Trickbot initially started out as a Trojan for hacking bank accounts, but over time expanded its functions and was used as an initial invasion vector for various ransomware programs, and also helped the Emotet network recover after it was eliminated by law enforcement agencies. Trickbot ceased to exist in 2022, but by that time many of its developers had moved to other groups.
Former Trickbot developer Vladimir Dunaev from the Amur region of Russia was sentenced to 5 years and 4 months in prison in the United States for his role in infecting American hospitals and businesses with ransomware and other malware, which cost victims tens of millions of dollars in losses. Dunaev pleaded guilty in court on November 30 to two counts: conspiracy to commit computer fraud and conspiracy to commit fraud using electronic means of communication.
From June 2016 to June 2021, Dunaev worked as a developer in a criminal group, providing "specialized services and technical skills". Its tasks included attracting other developers, purchasing and managing servers for deploying and running Trickbot malware, encrypting the virus to avoid detection by antivirus programs, distributing spam and phishing attacks, and laundering stolen funds. Dunaev also added the ability to steal credentials from victims ' browsers.
In particular, Dunaev developed modifications for the popular Firefox and Chrome browsers, using the open code bases of each browser, which allowed Trickbot participants to steal passwords, credentials and other information.
According to court documents, the group defrauded victims of more than $3.4 million between October 2018 and February 2021 alone. According to the National Crime Agency of Great Britain, the gang extorted at least $180 million. from people and organizations around the world.
Dunaev was extradited to the United States from South Korea in 2021. In the original indictment, Dunaev and six others were accused of developing, deploying, managing, and profiting from Trickbot. In June, one of the six suspects — the administrator of the Trickbot malware, a Latvian citizen Alla Witte-pleaded guilty to conspiracy to commit computer fraud and was sentenced to 2 years and 8 months in prison.
Trickbot initially started out as a Trojan for hacking bank accounts, but over time expanded its functions and was used as an initial invasion vector for various ransomware programs, and also helped the Emotet network recover after it was eliminated by law enforcement agencies. Trickbot ceased to exist in 2022, but by that time many of its developers had moved to other groups.
