Russian man pleads guilty in SpyEye malware case
Panin was the primary developer of the banking fraud malware, the DOJ says
IDG News Service - Russian Aleksandr Andreevich Panin has pleaded guilty to conspiracy to commit wire and bank fraud for his role as primary developer and distributor of the SpyEye bank fraud Trojan, the U.S. Department of Justice said Tuesday.
Panin, known as Gribodemon and Harderman, was primary developer of SpyEye, a sophisticated, malicious computer Trojan designed to automate the theft of confidential personal and financial information, including online banking credentials, credit card information, user names and passwords, the DOJ said in a press release. The virus has infected an estimated 1.4 million computers worldwideA since 2009.
The SpyEye code secretly infects victims' computers, enabling cybercriminals to remotely control the infected computers through command and control, or C2, servers.A After a computer is infected and under their control, cybercriminals can remotely access the infected computers, without authorization, and steal victims' personal and financial information through a variety of techniques, including keystroke loggers, and credit card grabbers, the DOJ said. The victims' stolen personal and financial data is then transmitted to the C2 servers, where it is used to steal money from the victims' financial accounts.
Panin was the primary developer and distributor of the SpyEye malware package, the DOJ said.A Operating from Russia from 2009 to 2011, he conspired with others, including codefendant Hamza Bendelladj, an Algerian national also known as Bx1, to develop, market and sell various versions of the SpyEye virus and component parts on the Internet, the agency alleged.A
Panin allowed cybercriminals to customize their purchases to include tailor-made methods of obtaining victims' personal and financial information, and he marketed versions that specifically targeted designated financial institutions, the DOJ said.A Panin advertised the SpyEye virus on online, invitation-only criminal forums.A He sold versions of SpyEye for US$1,000 to $8,500.A
Investigators believe he sold SpyEye to at least 150 clients, who, in turn, used them to set up their own C2 servers.A One of Panin's clients, nicknamed Soldier, is believed to have made more than $3.2 million in a six-month period using SpyEye.
"Given the recent revelations of massive thefts of financial information from large retail stores across the country, Americans do not need to be reminded how devastating it is when cybercriminals surreptitiously install malicious codes on computer networks and then siphon away private information from unsuspecting consumers," Acting Assistant U.S. Attorney General Mythili Raman said in a statement.A "As this prosecution shows, cyber criminals -- even when they sit on the other side of the world and attempt to hide behind online aliases -- are never outside the reach of U.S. law enforcement."
SpyEye was the preeminent malware toolkit used from approximately 2009 to 2011, but it continues to infect computers today, the DOJ said.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Who's Spying on You? You're aware of the threats of malware to your business but what about the ever-changing ground rules? Cybercriminals today are launching attacks against...
- Pay-as-you-Grow Data Protection: IBM Tivoli's Full-featured Data Protection Suite for Small to Medium Businesses IBM Tivoli Storage Manager Suite for Unified Recovery gives small and medium businesses the opportunity to start out with only the individual solutions...
- Streamline Data Protection with IBM Tivoli Storage Manager Operations Center IBM Tivoli Storage Manager (TSM) has been an industry-standard data protection solution for two decades. But, where most competitors focus exclusively on Backup...
- Simplify and Consolidate Data Protection for Better Business Results Learn about IBM® Tivoli® Storage Manager Operations Center, which provides advanced visualization, built-in analytics and integrated workflow automation features that leapfrog traditional backup...
- Meg Whitman presents Unlocking IT with Big Data During this Web Event you will hear Meg Whitman, President and CEO, HP discuss HAVEn - the #1 Big Data platform, as well...
- The New Way to Work Knowledge Vault This Knowledge Vault focuses on how, in today's increasingly virtual world, it's more important than ever to engage deeply with employees, suppliers, partners,... All Cybercrime and Hacking White Papers | Webcasts