Massive Money-Stealing Botnet Suspect Arrested In Russia

The cybercrime division of the Russian police arrested a 22-year-old on Friday, who is allegedly responsible for stealing 150 million rubles (£2.9m) from online banking users.

The young criminal allegedly managed a six million-strong botnet, one of the largest of its kind, to infect systems with Trojans, and used the information he obtained to transfer money to his accounts. It is believed he then spent those funds on a luxury lifestyle, involving fast cars and real estate.

The son of Zeus

According to Ria Novosti, the botnet, built by the hacker known under aliases “Hermes” and “Arashi”, involved around 6 million computers. The majority were located in Russia, in the cities of Moscow and St. Petersburg. The network was used to spread malware that was then used to steal people’s banking details.

This is the biggest banking Trojan botnet ever to be uncovered in Russia, according to reports, and one of the biggest in the world. Every day, the botnet operator would attempt to install malware on around 1 million computers, which meant that on some days, around 100,000 computers would join the network.

For his operation, Hermes allegedly used modifications of familiar banking Trojans, such as Carberp. After getting his hands on log-in and password information, the culprit would transfer the money from the accounts of legitimate users into his own fake company accounts, it was claimed. The money was then withdrawn using ATMs.

Hermes would also rent his botnet out to other hackers all around the country as an additional source of income, it was alleged.

The cybercriminal was living it large, using the money he stole to buy several expensive cars and a house in a Russian resort town, but he also started investing in legitimate companies, according to the allegations.

Tracking Hermes down took the Russian cybercrime unit “Division K” ten months. The youngster now faces a lengthy term in jail.

In March, Division K arrested a group of hackers which used banking Trojans to steal at least 60 million rubles (£1.3m) in a similar manner.

Can you look after your personal data online? Take our quiz!

Max Smolaks

Max 'Beast from the East' Smolaks covers open source, public sector, startups and technology of the future at TechWeekEurope. If you find him looking lost on the streets of London, feed him coffee and sugar.

Recent Posts

Elon Musk’s X Suffers Multiple Outages

Nation-state cyberattack? Elon Musk blames outages on Monday at X (formerly Twitter) on “massive cyberattack”

10 hours ago

Apple Confirms AI Improvements to Siri Delayed To 2026

More time required for Apple to improved the AI capabilities of the Siri voice assistant,…

12 hours ago

Siemens Confirms $285m Manufacturing Investment In US

German conglomerate Siemens confirms $285 million investment for manufacturing facilities in Texas and California

13 hours ago

IBM Wins Lawsuit Against LzLabs Over Mainframe Patents

Court ruling. Big Blue lawsuit filed in London had alleged IP theft of mainframe technology…

15 hours ago

Trump Says US Talking With Four Groups Over TikTok Sale

But what about Beijing? Donald Trump says administration in talks with four different groups about…

17 hours ago