Ukrainian policemen apprehended 6 hackers involved in DDoS and financial attacks
This week Ukrainian police have arrested two criminal campaigns engaged in performing DDoS attacks against information agencies. The attacks were aimed at stealing money from Ukrainian residents.
As the authorities reported, the four supposed criminals at the age between 26-30 took roots in the computers of Ukrainian citizens and stole more than 5 million Hryvnia (around 178,380 USD) from their bank accounts.
The strategy of hackers consisted in scanning vulnerable computers on the Internet in order to make them infected with the Trojan malware and, as a result, to fully control all the systems remotely.
Then hackers apparently activated key-logging on the infected computers to intercept banking credentials when the victims enter information either on any banking site or their digital currency wallet.
When attackers hacked all necessary information, they immediately logged into online banking accounts of the victims and transferred all money to the accounts they controlled.
The authorities also stressed that criminals performed all actions mainly at night. Moreover, they were considered as the trusted users, so, banks did all operations without any suspicions. All operations were absolutely legitimate.
What is more, attackers left the backdoor on the infected devices to perform other malicious activities in the future.
Criminal charges were brought over all the four persons according to the Criminal Code of Ukraine, including theft and unauthorized interference with the work of computers, automated systems, computer networks or telecommunication networks.
The arrest of two more DDoS hackers
Police also informed about two other suspects, 21- and 22-years-old, accused of performing DDoS attacks against several critical Ukrainian resources, such as news sites of the city of Mariupol and several state educational institutions.
The authorities also reported that the duo invented two DDoS hacking tools for sending hundreds of automatic requests to the targets every second that result in service unavailability.
Now these two are carried a penalty of up to six years imprisonment under article 361 of the Criminal Code of Ukraine including unlawful interference with the work of computers, automated systems, computer networks or telecommunication networks.