Raccoon Stealer is in the Can

10861789694?profile=RESIZE_400xA Ukrainian man has been charged with computer fraud for allegedly infecting millions of computers with malware in a cybercrime operation known as "Raccoon Infostealer," the US Justice Department (DOJ) said 25 October 2022.  Mark Sokolovsky, 26, is being held in the Netherlands and the US is seeking his extradition, the DOJ said in a statement.

It said Raccoon Stealer malware was leased to cybercriminals for $200 a month, payable in cryptocurrency.  The malware was then installed on the computers of unsuspecting victims and used to steal personal data such as log-in credentials and financial information, the department said.

Raccoon Stealer is also known as Legion, Mohazo, and Racealer and is a high-risk Trojan-type application that infiltrates the system and collects personal information, passwords, credit card numbers and other sensitive data from infected PCs.

See:  https://redskyalliance.org/xindustry/raccoon-password-stealer-is-back-again

It said the FBI and law enforcement partners in Italy and the Netherlands dismantled the digital infrastructure supporting "Raccoon Infostealer" in March 2022, when Sokolovsky was arrested.  The DOJ said the FBI has identified more than 50 million unique credentials and forms of identification such as email addresses and credit card numbers in the stolen data from millions of potential victims around the world.

"This case highlights the importance of the international cooperation that the Department of Justice and our partners use to dismantle modern cyber threats," a Deputy Attorney General said.  "As reflected in the number of potential victims and global breadth of this attack, cyber threats do not respect borders, which makes international cooperation all the more critical," DOJ said.

Sokolovsky is charged with computer fraud, wire fraud, money laundering and identity theft.  He faces up to 20 years in prison for the wire fraud and money laundering charges.  The DOJ said Sokolovsky is appealing a September 2022 decision by the Amsterdam District Court granting his extradition to the United States.

Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization.    For questions, comments or assistance, please contact the office directly at 1-844-492-7225, or feedback@wapacklabs.com      

Weekly Cyber Intelligence Briefings:

  • Reporting: https://www. redskyalliance. org/   
  • Website: https://www. wapacklabs. com/  
  • LinkedIn: https://www. linkedin. com/company/64265941   

Weekly Cyber Intelligence Briefings:

REDSHORTS - Weekly Cyber Intelligence Briefings

https://attendee.gotowebinar.com/register/5504229295967742989

Source: https://krebsonsecurity.com/2022/10/accused-raccoon-malware-developer-fled-ukraine-after-russian-invasion/

E-mail me when people leave their comments –

You need to be a member of Red Sky Alliance to add comments!