We need your help now
Support from readers like you keeps The Journal open.
You are visiting us because we have something you value. Independent, unbiased news that tells the truth. Advertising revenue goes some way to support our mission, but this year it has not been enough.
If you've seen value in our reporting, please contribute what you can, so we can continue to produce accurate and meaningful journalism. For everyone who needs it.
Sign in. It’s quick, free and it’s up to you.
An account is an optional way to support the work we do. Find out more.
By continuing, you are indicating that you accept our Terms of Service and Privacy Policy.
POLICE HAVE ARRESTED around 100 people in global raids against notorious malware being sold complete with “ransom notes” to extort money after taking control of computers.
“During the course of a worldwide investigation, creators, sellers and users of BlackShades malware were targeted by judicial and law enforcement authorities in 16 different countries,” Europe-wide police and justice bodies Europol and Eurojust said in a statement.
Thousands of people around the world have bought BlackShades RAT (Remote Access Tools) malicious software or malware, which can be used to secretly take control of a user’s webcam or entire computer, as well as encrypt its contents and hold them to ransom.
The malware could also be used to carry out distributed denial-of-service cyberattacks to bring down websites.
BlackShades comes complete with model “ransom notes” for extorting cash after notifying a user that they have lost control of their computer.
“Warning! Your computer has been hacked and your private files encrypted and can only be decrypted by us,” reads one such note along with blank spaces for bank account details where the “ransom” should be paid.
Over two days, police and the FBI raided 359 houses, arrested 97 people and seized “substantial quantities” of cash, illegal guns and drugs, as well as over 1,000 data storage devices, the statement said.
“A recent case in the Netherlands of BlackShades malware being used for criminal purposes was that of an 18-year-old man who infected at least 2,000 computers, controlling the victim’s webcams to take pictures of women and girls,” Eurojust said.
Among the countries raided were the Netherlands, Belgium, France, Germany, the UK, Italy, the US, Canada, Chile and Switzerland.
The FBI passed on a list of nationals suspected of having bought or used BlackShades to their respective countries after arresting two people who wrote the software, a judicial source in Paris told AFP.
French police last week raided around 50 properties as part of the investigation, detaining 26 people.
Seven of those detained admitted possessing BlackShades for nefarious purposes, including hacking webcams or Facebook accounts, the public prosecutor said in a statement.
Eight suspects said they used the malware to pirate online video games.
“The investigation is continuing,” a French judicial source told AFP.
Hacker websites began reporting three days ago that police were raiding people suspected of buying or using BlackShades, which is reportedly available on the so-called “darknet” network of trusted peers for under $100 (70 euros).
Chatrooms suggested police were using records from the PayPal payment site to identify those who bought the malware.
To embed this post, copy the code below on your site
Not worried, I’m fairly certain nobody wants to see me in my birthday suit re-enacting scenes from Star Wars using my Hurley as a lightsaber.
Which I absolutely don’t do.
“Hurley”
Yeah, sure.
Arrested Development?
I’ll never tell, Brian ;)
we shall call you… Alt 255.
So these guys were sourcing the black shades software on the dark net & then buying it through PayPal? Why didn’t they just use bitcoin for payment? Not very clever hackers are they? Delighted they were caught.
Most “hackers” are caught because they are stupid and never put a thought into opsec.
Always put a Band-Aid over your in-built webcams fellas
Glad to hear I am not the only one who does this. “just becuase your paranoid….” and all that.
Not just any old Band-Aid either, it’s a Hello Kitty one
Hmmm all I can see is yttik olleH
A practice recommend by Steve Gibson on his Security Now podcast.
Excellent, Chief:D
“Warning! Your computer has been hacked and your private files encrypted and can only be decrypted by us,” Sounds like 10 year-olds playing James Bond
have your say