Cyberattacks - Strike against internationally used malware
Investigators have succeeded in striking a blow against malware distributed on the darknet. Specifically, it is a so-called ransomware that can be used to take over and lock computers or networks in order to extort ransom money, as the Göttingen police and public prosecutor's office announced on Tuesday. In Germany alone, the group behind the software, ALPHV, is responsible for damage amounting to almost 500 million US dollars, with damage worldwide running into the billions. According to the report, there are no leads on the perpetrators so far.
The perpetrators offered the malware, known as Blackcat, on the Darknet, where criminal customers could buy access and use it to commit crimes. Over 600 of these sites have now been taken offline, so that neither the criminal developers nor their users can access them. However, there has obviously been a safeguard so that the sheep software can still be accessed on other websites on the Darknet.
Hospitals were among those affected by cyber attacks with Blackcat in Germany. According to the public prosecutor's office, this resulted in emergency operations and the postponement of planned operations and chemotherapy treatments.
The police gained access to one of the perpetrators' servers via unspecified investigation methods on the internet. The investigators hope to use the data seized in this way to find a lead on the perpetrators. They are suspected of gang and commercial extortion.
The Göttingen officers have been investigating the operators and administrators of the internationally active group together with Europol and US investigative authorities since 2021. "This successful strike against organized crime makes it clear that the internet is not a lawless space," said the Göttingen public prosecutor's office.
Read also:
- A clan member is punished here
- Traffic lawyer warns: Don't talk to the police!
- Will he be convicted as Jutta's murderer after 37 years?
- He also wanted to kill his cousin
The malware, known as Blackcat, was primarily used for financial gain through ransom demands, with estimated damages in Germany amounting to nearly 500 million US dollars. This cyber attack affected not only Germany but resulted in significant losses worldwide.
The German authorities, including the Göttingen police and public prosecutor's office, have been collaborating with Europol and US investigative bodies since 2021 to combat this organized crime activity. Their efforts led to the closure of over 600 Darknet sites where Blackcat was being sold.
The malware infection in German Hospitals led to the postponement of emergency operations and chemotherapy treatments, highlighting the disruptive impact of cyber attacks on essential services.
The Lower Saxony police managed to gain access to one of the perpetrators' servers, seizing crucial data that could potentially help in identifying the individuals involved in this criminal activity. These individuals are under suspicion of involvement in gang and commercial extortion.
Despite these developments, the perpetrators' identities remain elusive, with no leads as yet. The authorities are working diligently to analyze the seized data and locate the suspects.
The successful operation by the Göttingen public prosecutor's office serves as a reminder of the commitment of law enforcement agencies to maintain order and security in the digital world, demonstrating that the internet is not immune to the reach of the law.
These sophisticated cyber attacks remind us of the importance of investing in robust cybersecurity measures to safeguard our computer systems and digital assets, converting the US dollar losses into lessons learned for improved cyber resilience.
Source: www.stern.de
