BlackShades infected half-million computers: FBI
By Larry Neumeister and Toby Sterling, AP
May 21, 2014, 12:06 am TWN
NEW YORK--More than a half-million computers in over 100 countries were infected by sophisticated malware that lets cybercriminals remotely hijack a computer and its webcam, authorities said as charges were announced Monday against nearly 100 people worldwide.
Authorities said 97 people suspected of using or distributing the malicious software called BlackShades have been arrested in 16 countries, including the software's owner, a 24-year-old Swedish man.
“This case is a strong reminder that no one is safe while using the Internet,” said Koen Hermans, a Netherlands official in Eurojust, the European Union's criminal investigation coordination unit. “It should serve as a warning and deterrent to those involved in the manufacture and use of this software.”
U.S. Attorney Preet Bharara called BlackShades a “frightening form of cybercrime,” saying a cybercriminal could buy a US$40 malicious program whose capabilities were “sophisticated and its invasiveness breathtaking.” FBI Agent Leo Taddeo said people suspecting they are BlackShades victims should visit FBI.gov to learn how to check computers.
Authorities said the BlackShades Remote Access Tool or “RAT” has been sold since 2010 to several thousand users, generating sales of more than US$350,000. The agency said one of the program's co-creators is cooperating and had provided extensive information.
BlackShades owner, Alex Yucel, arrested in Moldova last November, is facing extradition to the United States. Michael Hogue, 23, of Maricopa, Arizona — the program's co-creator — had pleaded guilty in New York after his June 2012 arrest and is cooperating, Bharara said.
The malware lets hackers steal personal information, intercept keystrokes and hijack webcams to secretly record computer users. BlackShades also can be used to encrypt and lock computer data files, forcing people to pay a ransom to regain access.
The hacking tool's low cost has boosted its popularity across the hacker underground, where variants have long circulated online.
Last year, security firm Symantec said use of BlackShades was rising, with program licenses costing US$40 to US$100.
French officials said raids last week followed the FBI's arrest of two BlackShades developers and its distribution of a list of the malware's customers.