Spain busts 'ransomware' cybercrime gang

Feb 13, 2013 by Alan Clendenning

(AP)—Spanish authorities on Wednesday announced the breakup of a cybercrime gang that used a "ransomware" virus to lock computers throughout Europe, display false messages claiming the action was taken by police and demand payment of €100 ($135) to unlock the computers.

The gang, operating from the Mediterranean resort cities of Benalmadena and Torremolinos, made at least €1 million ($1.35 million) annually, said Deputy Interior Minister Francisco Martinez. Their notices to victims were accompanied by false threats claiming they were under investigation for accessing child pornography or illegal file-sharing.

The 27-year-old Russian alleged to be the gang's founder and virus developer was detained in the United Arab Emirates at the request of Spanish police while on vacation and an extradition petition is pending, Martinez said. Six more Russians, two Ukrainians and two Georgians were arrested in Spain last week.

Europol, which coordinates national police forces across Europe and worked with Spanish authorities on the case, said the operation "dismantled the largest and most complex cybercrime network dedicated to spreading police ransomware."

Europol, based in The Hague, Netherlands, added that the gang infected tens of thousands of computers worldwide, and Spanish authorities said people from 30 mostly European nations were affected.

"It's an example of the evolving nature of cybercrime online," Europol director Rob Wainwright said. "It's an example of how cybercriminals are becoming more sophisticated in affecting thousands of people around Europe."

The virus displayed the national emblem of the police force in each country it appeared, telling people to buy prepaid electronic money cards to pay the fines online.

Authorities estimate less than 3 percent of those people whose computers were infected paid, but the amounts added up. The gang also stole data and information from victims' computers, and didn't unlock them after the fake fines were paid.

Money was also stolen from the victims' accounts via ATMs in Spain, and the gang made daily international money transfers through currency exchanges and call centers to send the funds stolen to Russia.

Spanish authorities identified more than 1,200 victims but said the actual number could be much higher. The government's Office of Internet Security received 784,000 visits for advice on how to get rid of the virus.

Those arrested face charges of money laundering, participation in a criminal operation and fraud.

Explore further: Study: Social media users shy away from opinions

4.3 /5 (3 votes)
add to favorites email to friend print save as pdf

Related Stories

Gangs don't protect against crime

Apr 13, 2011

Gang members are twice as likely to be crime victims than non-gang members and are more frequently subject to simple assault, aggravated assault and drive by shootings, according to a recently study by the Crime Victims' ...

Koobface computer virus gang unmasked

Jan 17, 2012

Online security researchers claimed Tuesday to have identified the members of a Russian gang of cyber criminals behind the Koobface computer virus which has attacked Facebook and other sites.

Cyber mastermind arrested, questioned in Slovenia

Jul 28, 2010

(AP) -- A cyber mastermind from Slovenia who is suspected of creating a malicious software code that infected 12 million computers worldwide and orchestrating other huge cyberscams has been arrested and questioned, police ...

Online scammers using 'FBI message' to demand money

Aug 09, 2012

The FBI warned computer users on Thursday to ignore a fake message, purportedly from its officers, that freezes people's screens and demands that they pay a fine for visiting inappropriate websites.

Recommended for you

Study: Social media users shy away from opinions

Aug 26, 2014

People on Facebook and Twitter say they are less likely to share their opinions on hot-button issues, even when they are offline, according to a surprising new survey by the Pew Research Center.

US warns shops to watch for customer data hacking

Aug 23, 2014

The US Department of Homeland Security on Friday warned businesses to watch for hackers targeting customer data with malicious computer code like that used against retail giant Target.

Fitbit to Schumer: We don't sell personal data

Aug 22, 2014

The maker of a popular line of wearable fitness-tracking devices says it has never sold personal data to advertisers, contrary to concerns raised by U.S. Sen. Charles Schumer.

Should you be worried about paid editors on Wikipedia?

Aug 22, 2014

Whether you trust it or ignore it, Wikipedia is one of the most popular websites in the world and accessed by millions of people every day. So would you trust it any more (or even less) if you knew people ...

How much do we really know about privacy on Facebook?

Aug 22, 2014

The recent furore about the Facebook Messenger app has unearthed an interesting question: how far are we willing to allow our privacy to be pushed for our social connections? In the case of the Facebook ...

Philippines makes arrests in online extortion ring

Aug 22, 2014

Philippine police have arrested eight suspected members of an online syndicate accused of blackmailing more than 1,000 Hong Kong and Singapore residents after luring them into exposing themselves in front of webcam, an official ...

User comments : 2

Adjust slider to filter visible comments by rank

Display comments: newest first

Anda
not rated yet Feb 13, 2013
Good news for me. I was tired of unlocking people's computers with this threat.
frajo
not rated yet Feb 15, 2013
"It's an example of the evolving nature of cybercrime online,"
But no mentioning whether it evolved to attack non-Windows computers, too.
Why is it that reports don't mention that only Windows computers are affected?
Somebody should find out and report the reasons.