Man involved in Shaltay-Boltay case was after Lurk hacker group
The hackers arrested yesterday belong to Lurk hacker group, as it turned out. What’s more, Kaspersky Lab top manager involved in Shaltay-Boltay case had been after them for a while.
Another group of hackers has been arrested, reported law enforcement authorities. The hackers were involved in money thefts from bankcards of Russians. 9 people have been detained with one taken into custody. The criminals turned out to be associated with Lurk group that had obtained access to various bank accounts using a Trojan with the same name. The hacker group was busted in May 2016.
Then, the FSB and MIA detained about 50 members of the hacker group in different parts of Russia, who had stolen over 1.7 billion rubles ($28.700.000) from accounts of Russian banks using the software.
Apart from the illegal attacks on the banking system, the hackers are responsible for cracking critical infrastructure, including Russia's strategic industries.
Video: 50 hackers arrested for stealing $28.700.000 from Russian banks
Lurk would insert the malware into news websites, so when a user would click on a particular link, the Trojan would infect the computer. This way, the hackers gained access to the bank accounts and could manage them. They would get both into clients’ accounts and into the banking system.
Security forces raided 34 addresses, where they found and seized over 90 items of computer equipment, drives and means of communication.
Lurk had members in Moscow, St. Petersburg, Yekaterinburg, Krasnodar Region, Tver Region and Sverdlovsk Region with a total of 17 regions of Russia involved.
According to the Russian Ministry of Internal Affairs, the damage the hackers inflicted has been over 3 billion rubles. The gang would spend the money on mansions and expensive cars. According to KP Yekaterinburg with a reference to a law enforcement source, police seized an Audi TT, a Cadillac SRX, a Mercedes Slk, and an expensive watch. One of the gang members turned out to possess Jaquet Droz Sculpted and Engraved Ornamentation Limited Edition 8 watch with the clock face made of 750 fine rose gold and encrusted with 272 diamonds (of 1.04 carats); the rotor is made of 750 fine white gold with white mother of pearl, and there is a hand-engraved image of a bird with a nest made of rose gold. There are only 8 watches like this in the world and the cost is 4 million rubles and up. The police also seized some cash and jewelry worth over 12 million rubles.
27 organizers and participants of the group have been charged, 19 of them are jailed. The suspects are charged under parts 1, 2 of Art. 210 of the Criminal Code of the Russian Federation (Creation of a Criminal Community and Participation Therein) and part 4 of Art. 159.6 of the Criminal Code (Swindling).
An interesting fact that a few weeks before the incident, within the framework of the treason case in December 2016, Ruslan Stoyanov, the head of Kaspersky Lab’s Computer Incident Investigation Dept, had been arrested. It was he who assisted the Ministry of Internal Affairs and the Federal Security Service in operation on detention of Lurk members in 2016. He noted that activity of the Lurk’s program in the Kaspersky Lab system had been recorded in 2011 for the first time.
It is known, that as part of the investigation of cybercrimes, Stoyanov worked closely with law enforcement officials, including Sergey Mikhailov, the Head of 2nd department of the FSB Information Security Center. The official is suspected in providing protection to another group of hackers – Shaltay-Boltay (Humpty Dumpty). According to some reports, Mikhailov ‘recruited’ hackers last summer, soon after capture of members of Lurk.
No doubts, Ruslan Stoyanov provided operatives with additional information on the ‘rivals’ while being under investigation. Unlike Lurk, Shaltay-Boltay group has been carrying hacker attacks on electronic mailbox of senior officials and media personalities. They offered the victims to buy out information they received or put it on sale.
To remind: members of the hacker group Shaltay-Boltay are accused of passing information to foreign intelligence services. As the CrimeRussia previously reported, members of the hacker group - leader Vladimir Anikeev (Lewis), his partners Konstantin Teplyakov (March Hare) and Alexander Filinov (Mad Hatter) – were arrested after the hacker attacks on accounts of influential businessmen and politicians. Moreover, due to Lewis’ testimony, operatives arrested top manager of Kaspersky Lab Ruslan Stoyanov, as well as FSB officials Sergey Mikhailov and Dmitry Dokuchaev.
Dmitry Dokuchaev (Forb), Left
Dmitry Dokuchaev is known to be a hacker under nickname Forb before his work in FSB. He considers hacking of the US Administration website as his biggest achievement, and claims that the most profitable field of hackers’ work is carding - stealing money from other people's bank cards.
Lawyers of Oleg Korshunov, who is charged with a large fraud in organizing the production of footwear for prisoners, do not see corpus delicti in his case. The prisoners did get their shoes, and the difference in the cost of footwear made from leather and split leather is about 10%.
UK investigators believe they have identified the suspected perpetrators behind the Novichok nerve agent attack on the Skripals through CCTV and have cross-checked the footage with records of people who entered the country around that time.