DOJ takes action against Dridex malware group, Evil Corp

The U.S. and the U.K. announced criminal charges and sanctions against alleged members of the Russian threat group Evil Corp, which is responsible for the Dridex malware.

The U.S. Department of Justice indicted Maksim Yakubets, 32, of Russia on counts of computer hacking and bank fraud. The State Department offered up to $5 million for information leading to the arrest and/or conviction of Yakubets, who is the alleged leader of Evil Corp. Additionally, the DOJ indicted Igor Turashev, 38, in relation to the Dridex banking Trojan.

The Department of Treasury announced sanctions against Evil Corp, which has been active since 2009 and has been connected to the Zeus, Bugat and Dridex malware. According to the Treasury Department announcement, “Evil Corp has used the Dridex malware to infect computers and harvest login credentials from hundreds of banks and financial institutions in over 40 countries, causing more than $100 million in theft.”

Assistant Attorney General Brian Benczkowski of the Justice Department’s criminal division noted in the DOJ press release that the U.K. National Crime Agency (NCA) was “crucial” in efforts to identify Yakubets and other members of Evil Corp.

The DOJ unsealed two indictments — one filed on Nov. 12 in the Western District of Pennsylvania and one filed Nov. 14 in the District of Nebraska. The former indictment named both Yakubets and Turashev in multiple fraud attempts using Dridex malware beginning in Nov. 2011, including an attempted transfer of $999,000 from the Sharon City School District and an attempt to transfer nearly $2.2 million from Penneco Oil. In total, the indictment filed in Pennsylvania included 10 charges of conspiracy, fraud and intentional damage to a computer.

The indictment filed in Nebraska only named Yakubets and listed 21 businesses and local government offices targeted across the country, nine of which were financial institutions, and covered incidents dating back to 2009. 

According to the DOJ, Yakubets went by the handle “aqua” online. A case from the District of Nebraska charged a John Doe “also known as ‘aqua'” and resulted in the extradition of two Ukrainian nationals from the U.K. to the U.S. in 2014. Those Ukrainians had previously been convicted in the U.K of laundering money for Evil Corp.

The Treasury Department said that its sanctions target “17 individuals and seven entities to include Evil Corp, its core cyber operators, multiple businesses associated with a group member, and financial facilitators utilized by the group.” The announcement went on to name Denis Gusev as a senior member of Evil Corp, as well as entities owned or controlled by Gusev, six other members of the group and eight known financial facilitators.

Previous attempts

These actions are not the first taken against Dridex malware threat actors. In October 2015, the DOJ indicted Andrey Ghinkul in connection with spreading the malware. Ghinkul was arrested in August 2015 in Cyprus and extradited to the U.S. in February 2016.

At the time, Brad Duncan, security researcher at Rackspace, noted that Dridex incidents had disappeared in September following Ghinkul’s arrest, but new instances of the malware began appearing again before the DOJ announced the indictment.

In October 2015, both the FBI and NCA set up sinkholes in efforts to stop the malware from connecting to command and control servers. But by January 2016, IBM security researchers confirmed a new version of Dridex malware was targeting banks in the U.K.

Earlier this year, Chronicle released the results of a five-year study into crimeware, which included looking at arrests made in connection with Zeus and Dridex malware, and found that law enforcement takedown attempts had only short-lived impacts if the masterminds behind such crimeware were not apprehended.

Go to Original Article

For Sale – 2 x ADSL Routers and a Netgear Gigabit 8 Port Smart Switch

Arrived today in perfect condition.
Feedback left

Go to Original Article

Wanted – Up to 14″laptop, maybe Toshiba Z30?

Ive got a toahiba z40 i bought from here to use with a meter to calibrate my tv just over a year ago, has had very little use by me, specifications are….
* Intel Core i5-4210 Processor up to 2.7Ghz
* 128GB Original Toshiba SSD Drive
* Windows 7 Professional 64Bit(upgraded to Windows 10)
* Built-In Bluetooth
* HDMI Port
* VGA Port
* 3x USB 3.0 Ports
* 3.5mm Headphone jack
* Ethernet Port
* SD Card Reader
* Original Toshiba Battery and charger
Is this of any interest?

Go to Original Article

For Sale – Ubiquiti Unifi USG 3

Would you take £50 inc postage?

Go to Original Article

For Sale – Apple MacBook Pro 13.3″ Latest Edition 2019

@tt01, bearing in mind the comments from your previous thread, I suggest you are transparent with this listing, answering all questions with as much detail as possible. Rousetafarian requested a copy of the receipt which you should post here (omitting personal details). The reason being; you are a new member with no verifiable history, selling an extremely high-value item on the basis of trust.

Thank you.

Go to Original Article

For Sale – Apple MacBook 12” rose gold m3/256gb/8mb with Apple care is owned and operated by M2N Limited,
company number 03997482, registered in England and Wales.

Powered by Xenforo, Hosted by Nimbus Hosting, Original design Critical Media Ltd.
This website uses the TMDb API but is not endorsed or certified by TMDb.

Copyright © 2000-2019 E. & O.E.

Go to Original Article

For Sale – Monitors: Acer ED323QURwidpx 31.5 inch WQHD 1800R Curved Monitor 2560 x 1440 @75Hz and Dell 24 Monitor SE2417HG 1920 x 1080 2ms @60Hz

Both Monitors used for about 6 months now no longer needed, as new in box, still have the protective plastic on the back.

The Acer comes with unused Display-port cable, power cables and instructions.

The Dell comes with unused VGA cable, power cable and instructions.

Just see the photos, my feedback, buy with confidence and grab a bargain.

Can be collected (preferred) for free from Northampton or posted at cost for the buyer.

Acer ED323QUR => £229 collected or + p&p

Dell SE2417HG => £75 collected or + p&p


Go to Original Article

For Sale – Core i5 4670k – 8gb Ripjaw Ram – Gigabyte Motherboard – Apple Magic Keyboard 2 (Seperate or as combo)

Hi, I am selling an Apple Magic Keyboard 2 bought a few months back but I’ve only really used it two or three times. I intended to use when having my MacBook hooked up to my main monitor but ended up still using my PC for the majority of web development stuff.

Also comes with

  • Original box in good condition (with cellophane around it except the opening)
  • Lightning Cable
  • Original packaging around the keyboard (as in the first photo)
  • Apple Sticker

Price and currency
Delivery cost included
Delivery Is Included
Prefer goods collected?
I have no preference
Advertised elsewhere?
Not advertised elsewhere
Payment method
Paypal Gift / Bacs

Last edited:

Go to Original Article

For Sale – HP ENVY AIO 27-b205na i7-8700T 27″ 4k TOUCH SCREEN, 32GB RAM, 2TBHD + 256 SSD and warranty

HP ENVY AIO 27-b205na i7-8700T 27″ 4k TOUCH SCREEN, 32GB RAM, 2TBHD + 256 SSD and warranty.

Condition is used but absolutely excellent condition. No dead or stuck pixels.

Please note I have upgraded the RAM from 8GB to 32GB and had to partially remove the protective sticker underneath to do so. Once this is done it can’t be put back exactly as new.

Included, is the original box, and barely used mouse and keyboard (used my own), PSU etc. Also, I have included a USB recovery media. It has been securely wiped and put back to factory default settings – Windows 10 Home 64bit.

The unit comes with the remainder of the HP Carepack warranty – 1 year and 9 months left as of 7th December 2019.

Couriered insured delivery at a cost of £45, arrange your own, or collection from Stone, Staffordshire.

For my protection, I have logged the serial number and will only ship to England, Scotland and Wales.

Any questions, please ask.

Go to Original Article