5 Members of the cyber crime network who used the GozNym malware accused of stealing around $100 million from in excess of 41,000 victims have been arrested in Bulgaria, Georgia and Ukraine as part of an investigation by Europol.
The group of 10 individuals used GozNym to focus mainly on businesses and financial institutions, with 5 remaining members of the group awaiting arrest.
A Grand Jury in Pittsburgh, USA charged the 10 members of the group with an Indictment of infecting victims computer with GozNym malware in order to capture their banking login details, using the captured details to gain unauthorised access to the victims bank accounts and stealing money from those accounts.
The operation against the Goznym gang involved cooperation between various European countries and the USA.
The Defendants had advertised their specialisms on Russian speaking online criminal forums and the GozNym network was formed when they were recruited from those forums by the leader of the network who controlled over 41,000 computers of victims using the GozNym malware.
One of the members encrypted the GozNym malware so that it would not be detected by antivirus software.
Another used the stolen banking details captured by the GozNym malware to access the victims online bank accounts and steal money from those accounts.
Other members provided money laundering services and provided other members of the GozNym group access to the bank accounts that they controlled in order to receive the funds stolen from the victims accounts.
Another member was the developer of the GozNym malware and oversaw the creation, development and leasing of the software to other cyber criminals.
A further member provided the mass distribution of the GozNym malware through the use of ‘phishing’ emails that appeared legitimate to the recipient and, when clicked, the malware was downloaded to the victims computer.
An Administrator of the Avalanche Network also provided the GozNym network with hosting. That same network is understood to have provided network services to over 200 cyber criminals and 20 different malware campaigns. That Administrator is also facing criminal charges.
About Athena Forensics
For information on our digital forensic services or if you require any advice or assistance please contact a member of our team on 0330 123 4448 or via email on firstname.lastname@example.org, further details are available on our contact us page.
Our client’s confidentiality is of the utmost importance. All correspondence is treated with discretion, from initial contact to the conclusion of any computer forensics investigation.
Our digital forensics experts are fully aware of the significance and importance of the information that they encounter and we have been accredited to ISO 9001 for 10 years.
Our forensic experts are all security cleared and we offer non-disclosure agreements if required. Our premises along with our security procedures have been inspected and approved by law enforcement agencies.
Athena Forensics do not disclose personal information to other companies or suppliers.