REvil ransomware affiliates arrested in Romania and Kuwait
Latest in cybersecurity.
Romanian law enforcement authorities have arrested two suspects believed to be Sodinokibi/REvil ransomware affiliates on November 4, both of them allegedly responsible for infecting thousands of victims.
DIICOT (the Romanian Directorate for Investigating Organized Crime and Terrorism) and judicial police officers carried out four home searches in Constanța, seizing mobile devices (laptops, mobile phones) and storage media.
The Bucharest Tribunal also ordered the pre-trial detention for the two REvil affiliates for 30 days.
On the same day, Kuwaiti authorities also arrested a third REvil ransomware affiliate, the three of them being suspected of attacking roughly 7,000 victims in total.
Authorities arrested seven suspects linked to REvil this year in total. Three other individuals believed to be REvil affiliates were apprehended in South Korea in February, April, and October, and one was arrested in Europe last month.
The announcement, made today by Europol (the European Union Agency for Law Enforcement Cooperation), says the arrests are the results of operation GoldDust, which involved law enforcement agents from 17 countries, the Europol, Eurojust, and the INTERPOL.
“Since 2018, Europol has supported a Romanian-led investigation which targets the GandCrab ransomware family and involved law enforcement authorities from a number of countries, including the United Kingdom and the United States,” the Europol said.
“All these arrests follow the joint international law enforcement efforts of identification, wiretapping and seizure of some of the infrastructure used by Sodinokibi/REvil ransomware family, which is seen as the successor of GandCrab.”
via BleepingComputer https://ift.tt/2fDDDRH
November 8, 2021 at 06:58AM