More than 100 individuals, including 17 from the UK, have been arrested as part of a worldwide operation targeting users of a hacking tool capable of a range of tasks, from compromising webcams to spying on activist in Syria.
The software, known as Blackshades, was sold “openly” over the internet for prices starting at just $40 (£23) and had an active user community who used a dedicated online forum to exchange hints and tips on using the RAT (‘remote administration tool’) malware.
Since 2010 it’s thought that Blackshades was used to infect more than 500,000 computers, with the software able to capture personal information or photograph users unaware and use these images to blackmail them.
One infamous incident involving the software saw 20-year-old US student Jared James Abrahams blackmail tens of girls and women, including a Miss Teen USA winner, by taking pictures of them while they were undressing in their rooms.
The worldwide crackdown focused on individuals who were involved with the development of the software or who were identified as prolific users. The UK’s National Crime Agency (NCA) reported making 15 arrests in England and two in Scotland, with eighty more individuals held across 15 countries including France, Germany and the USA.
At a press conference in New York, US attorney Preet Bharara described the software as a "frightening form of cybercrime” which "enabled anyone anywhere in the world to instantly become a dangerous cyber-criminal able to steal your property and invade your privacy.”
It’s thought that the operation was brought about when FBI arrested two developers of the malware and obtained a list of their customers. Blackshades reportedly generated sales of more than $350,000 (£208,000) since its creation in 2010.
In the UK, the NCA warned that its officers were now aware of who had downloaded the malware and warned them not to use it. Andy Archibald, deputy director of the NCA’s cybercrime unit, said “criminals throughout the UK and across the world are finding out that committing crimes remotely offers no protection from arrest.”Reuse content