"A statement issued by spokesperson Irina Volk via the Ministry's Telegram channel on Thursday included video footage of all three arrests of men described as "young IT specialists" who are alleged to have helped create, distribute, and deploy the malware. Multiple armed officers carried out the arrests, all of which involved breaking down the doors of the alleged cybercriminals' residences using tools such as crowbars and sledgehammers."
"The three suspects, who were not named, were said to have begun work on Meduza around two years ago, which aligns with reports from Western security shops like Splunk, which first identified it in 2023. All three were arrested in Moscow and the wider Moscow region by the Rosgvardiya (National Guard), which also seized their devices, bank cards, and other miscellaneous items believed to hold evidential value, Volk stated."
""As a result of operational and investigative actions, it was established that the detainees also developed and distributed another type of malicious software," she added (machine translated from Russian). "It is designed to neutralize computer information protection tools and create botnets - networks of infected computers that are used for large-scale cyberattacks.""
Three suspects described as young IT specialists were arrested in Moscow and the wider Moscow region on accusations of creating, distributing, and deploying the Meduza infostealer. Arrest footage was shared via the Interior Ministry spokesperson's Telegram channel and showed forced entries by multiple armed officers. Authorities say the suspects began work on Meduza about two years ago, consistent with Splunk identifying it in 2023. Rosgvardiya seized devices, bank cards, and other items believed to hold evidential value. Investigators also linked the detainees to additional malware meant to neutralize protection tools and build botnets. An attack on an Astrakhan organization was cited as relevant.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]