- Sparks fly as Orban berates EU 'elites' in parliament trip
- US finalizes rule to remove lead pipes within a decade
- Solanke hungry for second England cap after seven-year wait
- Gilded canopy restored at Vatican basilica
- Zverev scrapes through, Djokovic cruises to Shanghai Masters last 16
- Trump secretly sent Covid tests to Putin: Bob Woodward book
- Gauff answers critics: 'It's hard to win all the time'
- Neural networks, machine learning? Nobel-winning AI science explained
- China says raised 'serious concerns' with US over trade curbs
- Boeing delivers 27 MAX jets in September despite strike
- German 'Maddie' suspect could be free in 2025 after cleared of other sex crimes
- Italy seek Nations League consistency as Germany continue rebuild
- From boom to budgeting as reality bites for Saudi football
- Stock markets diverge as Hong Kong sinks, oil prices fall
- US trade gap narrowest in five months as imports slip
- Stay and 'you are going to die': Florida braces for next hurricane
- England 96-1 after Salman's century lifts Pakistan to 556
- Hollywood star Idris Elba champions African cinema in Ghana
- Djokovic rolls Cobolli to make Shanghai Masters last 16
- Milan's Hernandez receives two-game suspension after referee rant
- Geoffrey Hinton, soft-spoken godfather of AI
- Ex-Barcelona and Spain great Iniesta retires aged 40
- Duo wins Physics Nobel for 'foundational' AI breakthroughs
- German 'Maddie' suspect could be free in 2025 after cleared of separate sex crimes
- China slaps provisional tariffs on EU brandy imports
- Ex-skipper Skelton eyes Wallabies November return
- Spanish great Iniesta leaves indelible legacy after retirement
- Indian Kashmir elects first regional government in a decade
- Hong Kong stocks crash, oil prices retreat on fading China boost
- Man City accuse Premier League of 'misleading' claims after legal case
- Duo wins Physics Nobel for key breakthroughs in AI
- Agha defies England as Pakistan post 515-8 in first Test
- September second-warmest on record: EU climate monitor
- Pastor wanted by US for sex trafficking to run for Philippine senate
- Mozambican writer Mia Couto dreams future leaders set an 'example'
- German 'Maddie' suspect could be free soon after cleared of separate sex crimes
- China says to take anti-dumping measures against EU brandy imports
- German suspect in 'Maddie' case cleared in separate sex crimes trial
- Israel expands offensive against Hezbollah in south Lebanon
- China stocks rally fizzles on stimulus worries amid Asia retreat
- Bangladesh's Yunus says no elections before reforms
- England strike twice as Pakistan reach 397-6 at lunch in first Test
- China stocks rally peters out on stimulus worries amid Asia retreat
- Taiwan's Foxconn says building world's largest 'superchip' plant
- Kenya's deputy president faces impeachment vote
- N. Korean soldiers 'highly likely' killed in Ukraine: Seoul
- 'Appeals Centre' to referee EU social media disputes
- US Supreme Court to hear 'ghost guns' regulation case
- 'Small' oil leaks detected in Samoa after NZ navy shipwreck
- Nobel literature jury may go for non-Western writer
RBGPF | -0.46% | 60.52 | $ | |
RYCEF | 1.29% | 6.97 | $ | |
VOD | -0.16% | 9.675 | $ | |
CMSC | -0.12% | 24.54 | $ | |
RELX | 1.13% | 46.565 | $ | |
AZN | -0.24% | 76.685 | $ | |
GSK | -1.32% | 38.125 | $ | |
BTI | -0.06% | 35.18 | $ | |
NGG | 0.79% | 66 | $ | |
SCS | 0.23% | 12.98 | $ | |
RIO | -4.72% | 66.481 | $ | |
CMSD | 0.59% | 24.938 | $ | |
JRI | 0.15% | 13.2 | $ | |
BP | -3.74% | 31.946 | $ | |
BCC | 0.3% | 141.695 | $ | |
BCE | -0.8% | 33.264 | $ |
Four arrested in international anti-malware sweep
Authorities arrested four people and took down or disrupted more than 100 servers in the "largest ever" operation against botnets that deploy ransomware, Europol said Thursday.
Dubbed Operation Endgame, the sweep was initiated and led by France, Germany and the Netherlands, with a French official saying they wanted to act before this summer's Paris Olympics.
The attacks cost the victims, which were mainly companies and national institutions, hundreds of millions of euros, according to Dutch police, adding that the systems of millions of individuals were infected.
The May 27-29 operation led to one arrest in Armenia and three in Ukraine, with searches in both countries as well as in the Netherlands and Portugal, Europol said.
The servers were located in Bulgaria, Canada, Germany, Lithuania, the Netherlands, Romania, Switzerland, Britain, the United States and Ukraine.
In addition to the four arrests, eight fugitive suspects linked to the case will be added to Europe's Most Wanted list.
One of the suspects earned at least 69 million euros ($75 million) in cryptocurrency by renting out criminal infrastructure sites to disseminate ransomware, Europol said.
"This is the largest ever operation against botnets, which play a major role in the deployment of ransomware," the agency based in The Hague said.
A botnet is a network of computers infected by malware and controlled by hackers.
Authorities targeted malware "droppers" -- a type of software used to insert malicious software into a system -- named IcedID, SystemBC, Pikabot, Smokeloader, Bumblebee and Trickbot.
Trickbot was used to launch ransomware attacks on US hospitals during the Covid pandemic.
- Pre-Olympics sting -
The operation had "a global impact on the dropper ecosystem", Europol said.
Droppers allow criminals to bypass security measures and deploy viruses, ransomware or spyware, the agency said.
The malicious software is generally installed via emails with infected links or Word and PDF attachments, according to Eurojust, the European Union Agency for Criminal Justice Cooperation.
The agency said the operation was ongoing, with more arrests expected.
"We wanted to do this operation before the Olympic Games," Nicolas Guidoux, head of the French police's cybercrime unit, told AFP.
He said it was "important to weaken the attacking infrastructure" and "limit their resources" before the global event, as authorities fear that it could be targeted by numerous cyberattacks.
Endgame also involved authorities from Denmark, Britain and the United States, with additional support from Armenia, Bulgaria, Lithuania, Portugal, Romania, Switzerland and Ukraine.
- SystemBC and Pikabot -
The investigation was launched in 2022.
German cybercrime prosecutor Benjamin Krause said health, education and public administration institutions were targeted.
Hackers would encrypt files or whole systems to block access to them and then demand money to unlock them, Krause said at a news conference, adding that such attacks threatened "the existence of companies".
French investigators identified the administrator of the SystemBC dropper, which Europol said "facilitated anonymous communication between an infected system" and "command-and-control servers".
The administrator of Pikabot -- a Trojan horse allowing the deployment of ransomware, the remote takeover of computers and data theft -- was also identified by French authorities.
French police participated in the suspect's arrest and house search in Ukraine, with authorisation from local authorities, said Paris prosecutor Laure Beccuau.
Guidoux said the number of victims will be known only after the dismantled servers are analysed.
Cybersecurity experts said Operation Endgame helped to destabilise a criminal ecosystem that is difficult to crack.
"The dropper network is a piece of infrastructure that makes life easier for many cybercriminal groups," said Jerome Saiz, founder of cybersecurity firm OPFOR Intelligence.
Ch.Havering--AMWN