Ref; https://www.cybersecurity-help.cz/blog/1262.html
The US authorities have arrested a Ukrainian national who is believed to be a member of the infamous hacking group FIN7, a gang allegedly responsible for stealing nearly $1 billion from enterprises in the United States.
According to court documents, the suspected member of FIN7, Denys Iarmak, has been arrested in Seattle last week following his extradition from Thailand. He has been charged with conspiracy to commit wire and bank fraud, conspiracy to commit computer hacking, access device fraud, intentional damage to a protected computer, accessing a protected computer to commit fraud, and aggravated identity theft.
The indictment further alleges that Iarmak (aka Denys Olegovich Iarmak, Denys Yarmak, Denis Jarmak, Gak Tus, and "denis.jarmak") was involved in the FIN7's spear-phishing campaign, which allowed hackers to gain unauthorized access to victim computers.
Hackers then used the access to infect machines with malware, conduct surveillance, and steal user credentials, payment card and other sensitive data. As per court documents, the hackers often utilized various "off-the-shelf" tools and custom malware to extract and transfer data to a "loot" folder on one or more servers under FIN7's control.
The authorities said that Iarmak was a "pen-tester" who hacked into victims' computers and provided the information to other members of FIN7. In chat logs dating from 2017 Iarmak provided another member of FIN7 with user credentials for a compromised U.S. business as well as internal system information from a target, according to the indictment. Iarmak also used stolen credentials to communicate with a cyber security firm about installing and activating an anti-virus product.
Arrest of Denys Iarmak is part of an effort to take down the entire FIN7 group, whose victims include Chipotle, Taco John, Whole Foods, Red Robin and other fast food restaurants, credit unions, and casinos.
In 2018, US authorities arrested three members of the group - Dmytro Fedorov (44), Fedir Hladyr (33) and Andrii Kopakov (30). In 2019, Fedir Hladyr pleaded guilty to charges related to his role as an administrator of the FIN7 group who maintained servers and delegated responsibilities throughout the international hacking crew, among other duties.
The US authorities have arrested a Ukrainian national who is believed to be a member of the infamous hacking group FIN7, a gang allegedly responsible for stealing nearly $1 billion from enterprises in the United States.
According to court documents, the suspected member of FIN7, Denys Iarmak, has been arrested in Seattle last week following his extradition from Thailand. He has been charged with conspiracy to commit wire and bank fraud, conspiracy to commit computer hacking, access device fraud, intentional damage to a protected computer, accessing a protected computer to commit fraud, and aggravated identity theft.
The indictment further alleges that Iarmak (aka Denys Olegovich Iarmak, Denys Yarmak, Denis Jarmak, Gak Tus, and "denis.jarmak") was involved in the FIN7's spear-phishing campaign, which allowed hackers to gain unauthorized access to victim computers.
Hackers then used the access to infect machines with malware, conduct surveillance, and steal user credentials, payment card and other sensitive data. As per court documents, the hackers often utilized various "off-the-shelf" tools and custom malware to extract and transfer data to a "loot" folder on one or more servers under FIN7's control.
The authorities said that Iarmak was a "pen-tester" who hacked into victims' computers and provided the information to other members of FIN7. In chat logs dating from 2017 Iarmak provided another member of FIN7 with user credentials for a compromised U.S. business as well as internal system information from a target, according to the indictment. Iarmak also used stolen credentials to communicate with a cyber security firm about installing and activating an anti-virus product.
Arrest of Denys Iarmak is part of an effort to take down the entire FIN7 group, whose victims include Chipotle, Taco John, Whole Foods, Red Robin and other fast food restaurants, credit unions, and casinos.
In 2018, US authorities arrested three members of the group - Dmytro Fedorov (44), Fedir Hladyr (33) and Andrii Kopakov (30). In 2019, Fedir Hladyr pleaded guilty to charges related to his role as an administrator of the FIN7 group who maintained servers and delegated responsibilities throughout the international hacking crew, among other duties.