1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • The US government says it has seized and taken down the dangerous

    From TechnologyDaily@1337:1/100 to All on Mon Feb 12 16:00:06 2024
    The US government says it has seized and taken down the dangerous Warzone RAT malware

    Date:
    Mon, 12 Feb 2024 15:58:41 +0000

    Description:
    Servers used to distribute Warzone RAT were seized and dismantled in DoJ crackdown.

    FULL STORY ======================================================================

    Two hackers selling the Warzone RAT malware -as-a-service (MaaS) and offering customer support for their clients have been arrested, the US Department of Justice (DoJ) has announced.

    In a press release published on the DoJ website, it was said that two individuals, Daniel Meli (27) and Prince Onyeoziri Odinakachi (31), were charged with unauthorized damage to protected computers, with Meli also being charged of illegally selling and advertising an electronic interception
    device and participating in a conspiracy to commit several computer intrusion offenses."

    Their infrastructure was also seized and subsequently dismantled. "Ancient" malware

    The malware they sold is called Warzone Remote Access Trojan (RAT), and it
    was capable of stealing sensitive data and controlling compromised endpoints remotely. The attackers could use Warzone to browse victim file systems, grab screenshots, log keystrokes, steal login credentials, and even access peoples webcams. They sold it for $38 a month, or $196 a year.

    Multiple state and international law enforcement agencies participated in the operation, the DoJ confirmed, including the FBI, Europol, and national law enforcement in Australia, Canada, Croatia, Finland, Germany, Japan, Malta,
    the Netherlands, Nigeria, Romania, and Europol. The two hackers were arrested in Mali and Nigeria, allegedly.

    During the operation, the police also seized the domains (warzone[.]ws, among others), that were used to sell the malware, the DoJ confirmed.

    Warzone RAT has been around for years, with news reports dating back years. The Hacker News claims Warzone RAT was first observed in January 2019, when a threat actor used it to target an Italian organization in the oil and gas sector. The DoJ argues that Meli offered MaaS services since at least 2012, via hacking forums, through e-books, and other methods. Discord was also mentioned as a way of communicating with the sellers. More from TechRadar Pro Microsoft Excel threats could be a major security risk to your business
    Here's a list of the best firewalls around today These are the best endpoint security tools right now



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/the-us-government-says-it-has-seized-an d-taken-down-the-dangerous-warzone-rat-malware


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)