FBI: BlackShades infected half-million computers (Update)

May 19, 2014 by Larry Neumeister
Preet Bharara, U.S. Attorney for the Southern District of New York, discusses arrests in the malware BlackShades Remote Access Too, during a news conferencel in New York, Monday, May 19, 2014. More than a half million computers in over 100 countries were infected by sophisticated malware that lets cybercriminals take over a computer and hijack its webcam, authorities said as charges were announced Monday against more than 100 people worldwide. (AP Photo/Richard Drew)

More than a half-million computers in over 100 countries were infected by sophisticated malware that lets cybercriminals remotely hijack a computer and its webcam, authorities said as charges were announced Monday against nearly 100 people worldwide.

Authorities said 97 people suspected of using or distributing the malicious software called BlackShades have been arrested in 16 countries, including the software's owner, a 24-year-old Swedish man.

"This case is a strong reminder that no one is safe while using the Internet," said Koen Hermans, a Netherlands official in Eurojust, the European Union's criminal investigation coordination unit. "It should serve as a warning and deterrent to those involved in the manufacture and use of this software."

U.S. Attorney Preet Bharara called BlackShades a "frightening form of cybercrime," saying a cybercriminal could buy a $40 malicious program whose capabilities were "sophisticated and its invasiveness breathtaking." FBI Agent Leo Taddeo said people suspecting they are BlackShades victims should visit FBI.gov to learn how to check computers.

Authorities said the BlackShades Remote Access Tool or "RAT" has been sold since 2010 to several thousand users, generating sales of more than $350,000. The agency said one of the program's co-creators is cooperating and had provided extensive information.

Preet Bharara, U.S. Attorney for the Southern District of New York, discusses arrests in the malware BlackShades Remote Access Too, during a news conference in New York, Monday, May 19, 2014. More than a half million computers in over 100 countries were infected by sophisticated malware that lets cybercriminals take over a computer and hijack its webcam, authorities said as charges were announced Monday against more than 100 people worldwide. (AP Photo/Richard Drew)

BlackShades owner, Alex Yucel, arrested in Moldova last November, is facing extradition to the United States. Michael Hogue, 23, of Maricopa, Arizona—the program's co-creator—had pleaded guilty in New York after his June 2012 arrest and is cooperating, Bharara said.

The malware lets hackers steal personal information, intercept keystrokes and hijack webcams to secretly record computer users. BlackShades also can be used to encrypt and lock computer data files, forcing people to pay a ransom to regain access.

The hacking tool's low cost has boosted its popularity across the hacker underground, where variants have long circulated online.

Last year, security firm Symantec said use of BlackShades was rising, with program licenses costing $40 to $100.

French officials said raids last week followed the FBI's arrest of two BlackShades developers and its distribution of a list of the malware's customers.

Leo Taddeo, special agent-in-charge, Federal Bureau of Investigation,Special Operations and Cyber Division, discusses arrests in the malware BlackShades Remote Access Too, during a news conferencel in New York, Monday, May 19, 2014. More than a half million computers in over 100 countries were infected by sophisticated malware that lets cybercriminals take over a computer and hijack its webcam, authorities said as charges were announced Monday against more than 100 people worldwide. (AP Photo/Richard Drew)

Law enforcement coordination agencies Europol and Eurojust, based in The Hague, Netherlands, said Monday that police in 13 European countries—Austria, Belgium, Britain, Croatia, Denmark, Estonia, Finland, France, Germany, Italy, Moldova, the Netherlands and Switzerland—as well as in the United States, Canada and Chile raided 359 properties and seized cash, firearms, drugs and more than 1,000 data storage devices.

In Paris, the state prosecutor's office said more than two dozen people were arrested during May 13 raids. It said those arrested were identified by the FBI as French "citizens who had acquired or used this software."

Preet Bharara, U.S. Attorney for the Southern District of New York, discusses arrests in the malware BlackShades Remote Access Too, during a news conferencel in New York, Monday, May 19, 2014. More than a half million computers in over 100 countries were infected by sophisticated malware that lets cybercriminals take over a computer and hijack its webcam, authorities said as charges were announced Monday against more than 100 people worldwide. (AP Photo/Richard Drew)

In a previous BlackShades-related investigation, Dutch police this year arrested an 18-year-old man for using the malware to take pictures of women and girls within view of webcams on about 2,000 computers.

A Southern California man who was sentenced in March to prison for hacking the computers of a future Miss Teen USA and other young women was not part of the case. Although authorities say that he had BlackShades on his computer, but that it wasn't clear whether he used it or another program.

Explore further: Subway riders' smartphones could carry tracking malware

Related Stories

Operation Zombie arrests teen hacker in Argentina

Sep 13, 2013

(AP)—Argentine police say they have arrested an alleged 19-year-old hacker on suspicion of leading a network specialized in fraud and complex financial transactions that led to security breaches at numerous websites.

Recommended for you

Subway riders' smartphones could carry tracking malware

10 hours ago

Millions of city dwellers with smartphones in hand, pocket or bag, use trains to get around night and day, seven days a week. The incoming message from three researchers in China is that an attacker could ...

NSA winds down once-secret phone-records collection program

May 24, 2015

The National Security Agency has begun winding down its collection and storage of American phone records after the Senate failed to agree on a path forward to change or extend the once-secret program ahead of its expiration ...

Adult dating website hack exposes personal data

May 22, 2015

A data breach at a website billed as "the world's largest sex and swinger" community may expose personal and sexual information on millions of users worldwide, a report said Friday.

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.