Support The Moscow Times!
Contribute today

Suspect in 'Blackhole' Cybercrime Case Arrested in Russia, Source Says

By The Moscow Times

Russian authorities have arrested a man believed to be responsible for distributing a notorious software kit known as "Blackhole" that is widely used by cybercriminals to infect PCs, a source familiar with the situation said.

A former Russian police detective in contact with Russia's federal government told Reuters that the suspect, who is known in hacking circles as "Paunch," had been arrested. He provided no details.

Blackhole is a piece of malicious software that hackers install on web servers that then automatically infects personal computers when users visit a tainted site.

It contains an arsenal of tools for attacking PCs, each of which leverage vulnerabilities in computers. It probes potential victims looking for a way in, then attacks when it finds a weakness.

Once they are in, cybercriminals typically install other, more specialized programs on the computers of their victims. They include tools for engaging in identity theft and selling fake anti-virus software.

Security experts say Blackhole's developers regularly update the product so that customers can exploit the newest vulnerabilities uncovered in PCs. The ones most widely exploited include Microsoft's Windows and Internet Explorer, Adobe's Reader and Flash, and Oracle's Java software.

Officials in Russia could not immediately be reached for comment on the arrest.

A spokesman for Europol in The Hague said the European crime-fighting agency "had been informed that a high-level suspected cybercriminal" was arrested in Russia. He declined to elaborate.

Russian cybercriminals who confine themselves to attacking targets in other countries are rarely arrested, so the capture of Paunch was cause for some celebration among security researchers.

Not all of those arrested are ultimately convicted, however, and even some convicted of stealing millions of dollars have been released on probation.

Russia has one of the largest pools of talented hackers and an advanced underground economy that unites customers and programmers with those who control networks of compromised computers and can install new malicious programs at will.

… we have a small favor to ask.

As you may have heard, The Moscow Times, an independent news source for over 30 years, has been unjustly branded as a "foreign agent" by the Russian government. This blatant attempt to silence our voice is a direct assault on the integrity of journalism and the values we hold dear.

We, the journalists of The Moscow Times, refuse to be silenced. Our commitment to providing accurate and unbiased reporting on Russia remains unshaken. But we need your help to continue our critical mission.

Your support, no matter how small, makes a world of difference. If you can, please support us monthly starting from just 2. It's quick to set up, and you can be confident that you're making a significant impact every month by supporting open, independent journalism. Thank you.

Continue

Read more

News Analysis

How Delayed U.S. Aid Expanded the War in Ukraine’s Skies

As Congress held up vital aid for half a year, Russia exploited Ukraine’s dwindling supplies to bombard the country from the air to deadly effect.
6 Min read
'blatantly provocative'

Russia Denies Plans to Ban Passport Renewals Abroad

Novaya Gazeta said earlier Thursday that it had obtained a copy of a draft decree suspending passport renewals and other consular services for Russians...
2 Min read
Ukraine War

In Photos: Ukraine's Mariupol After 2 Years of Russian Occupation

The Ukrainian port city was all but destroyed in a harrowing Russian siege at the outset of the Kremlin's invasion.
1 Min read
under scrutiny

Moscow ‘Naked Party’ Organizer Fined for ‘Discrediting’ Russian Army

Anastasia Ivleeva was fined for an Instagram post from March 2022 in which she called for Russian-Ukrainian talks to end the conflict.
1 Min read