Hackers Arrested in Russia, Apple Zero-days, and Other Cybersecurity News

We have gathered the week’s most important cybersecurity news.

In Russia, hackers from The Infraud Organization were arrested

Russian law enforcement detained four suspects in connection with the The Infraud Organization hacking group, TASS reports.

The alleged organizer of the group, Andrey Novak, was remanded for two months, while three others were placed under house arrest.

The operation to locate and detain the hackers was carried out with the support of U.S. law enforcement, where Novak was already wanted on charges of cybercrime.

Some defendants in the case entered into plea agreements and testified against Novak.

In 2020, Russian Sergey Medvedev admitted involvement with The Infraud Organization. The group specialised in trading stolen personal data, compromised credit cards, malware and other illegal activities.

In mid-January the FSB announced the detention of members of the REvil hacker group.

Operators of the new DeadBolt ransomware demand 50 BTC for the master key

Experts have discovered a new ransomware, DeadBolt, targeting QNAP devices. The company confirmed the attacks.

They demand 0.03 BTC for decrypting data from victims. The DeadBolt operators are also prepared to provide information about the 0-day vulnerability they used for 5 BTC, and for 50 BTC — additionally hand over the master key to decrypt all victims’ files.

Apple fixes two zero-day vulnerabilities

Apple fixed two zero-day vulnerabilities. One was already used by attackers to compromise iPhone and Mac devices, and information about the second was publicly available, reports Bleeping Computer.

Kaspersky Lab reveals the price of Russians’ personal data on the darknet

Thirty percent of Russian respondents in a Kaspersky Lab survey shared their personal data, including phone numbers, home addresses or places of work.

«People often think that they are not of interest to attackers. But that is not quite true: the individual user may not be of interest, but their data certainly is,» the experts noted.

According to Kaspersky Lab, in the Russian-language darknet segment a package with a passport scan, a passport selfie, INN and SNILS costs from 300 rubles; a passport scan with INN alone costs about 100 rubles.

Media: Conti ransomware attacked Apple and Tesla contractor

Taiwanese company Delta Electronics, a contractor for Apple, Tesla, HP and Dell, was attacked by hackers using ransomware. The Record reports.

Although the company’s own statement about the attack did not name the perpetrators, local media citing documents say the responsibility could lie with the Conti ransomware operators.

The attackers reportedly demanded a $15 million ransom from the company.

In 2021 Conti attacked the Nokia subsidiary in the United States and the Graff jewelry firm.

Russia records largest botnet attack on retailers

Qrator Labs specialists detected a powerful botnet of a record 160,000 devices, aimed at companies in the retail sector, reports Kommersant.

The botnet was used not to damage the victims’ infrastructure through DDoS attacks but to harvest internal information.

Also on ForkLog:

• An OpenSea vulnerability earned the user 347 ETH.
• Hackers drained DeFi platforms of Qubit Finance $80 million.
• Roskomsvoboda appealed the Tor blockade in Russia.
• Unknown individuals hacked the accounts of crypto bloggers on YouTube.
• A darknet publication of Russians’ vaccination QR codes was deemed invalid by Rostelecom.
• According to Chainalysіs, in 2021 cybercriminals laundered $8.6 billion in cryptocurrency.
• CERT-UA detected a potential link between the attack on Ukrainian sites and the miner from the WEX exchange.

What to read this weekend?

Against the backdrop of several hacker arrests in Russia over the past month, we recall the history of another well-known cybercrime group — Lurk.

Follow ForkLog’s bitcoin news on our Telegram — cryptocurrency news, rates and analytics.