US accuses Venezuela doctor of selling ransomware to cybercriminals / Photo: NICOLAS ASFOURI - AFP/File
RBGPF
65.3000
The Japan Times - US accuses Venezuela doctor of selling ransomware to cybercriminals
EUR
-
AED 3.814778
AFN 77.377531
ALL 98.843556
AMD 411.25305
ANG 1.874052
AOA 948.777635
ARS 1094.561153
AUD 1.657815
AWG 1.872115
AZN 1.767581
BAM 1.952747
BBD 2.099477
BDT 126.342465
BGN 1.955105
BHD 0.391523
BIF 3077.928421
BMD 1.038621
BND 1.40268
BOB 7.185765
BRL 6.028266
BSD 1.039854
BTN 90.919972
BWP 14.432158
BYN 3.402947
BYR 20356.974081
BZD 2.088694
CAD 1.490115
CDF 2965.263327
CHF 0.937937
CLF 0.026273
CLP 1008.209985
CNY 7.565625
CNH 7.570511
COP 4337.873839
CRC 527.664841
CUC 1.038621
CUP 27.52346
CVE 110.091813
CZK 25.179291
DJF 185.166928
DKK 7.460239
DOP 64.278264
DZD 140.454806
EGP 52.253442
ERN 15.579317
ETB 131.177593
FJD 2.402639
FKP 0.855395
GBP 0.831965
GEL 2.901801
GGP 0.855395
GHS 16.013962
GIP 0.855395
GMD 74.7806
GNF 8989.771475
GTQ 8.039353
GYD 217.549863
HKD 8.088454
HNL 26.640929
HRK 7.664554
HTG 136.014723
HUF 406.40726
IDR 16964.837482
ILS 3.676306
IMP 0.855395
INR 90.911651
IQD 1362.170261
IRR 43725.94883
ISK 146.788212
JEP 0.855395
JMD 164.201691
JOD 0.736801
JPY 158.35025
KES 134.191991
KGS 90.827335
KHR 4172.140793
KMF 491.215852
KPW 934.759129
KRW 1503.954114
KWD 0.320405
KYD 0.866537
KZT 537.524411
LAK 22611.646924
LBP 93117.61502
LKR 310.444623
LRD 206.922494
LSL 19.362241
LTL 3.066778
LVL 0.628251
LYD 5.107915
MAD 10.408027
MDL 19.465379
MGA 4880.480788
MKD 61.517367
MMK 3373.400905
MNT 3529.2347
MOP 8.341259
MRU 41.457383
MUR 48.493325
MVR 16.005066
MWK 1803.063569
MXN 21.377575
MYR 4.597454
MZN 66.378033
NAD 19.362241
NGN 1556.591928
NIO 38.179518
NOK 11.68397
NPR 145.470757
NZD 1.833222
OMR 0.3999
PAB 1.039874
PEN 3.860038
PGK 4.15916
PHP 60.364146
PKR 289.722814
PLN 4.20437
PYG 8193.032511
QAR 3.791535
RON 4.975308
RSD 117.075413
RUB 101.779981
RWF 1449.915093
SAR 3.895573
SBD 8.765359
SCR 14.943146
SDG 624.200748
SEK 11.348639
SGD 1.403338
SHP 0.855395
SLE 23.779205
SLL 21779.365631
SOS 594.265151
SRD 36.460802
STD 21497.360353
SVC 9.098687
SYP 13504.151873
SZL 19.351372
THB 34.96466
TJS 11.349954
TMT 3.64556
TND 3.301257
TOP 2.432551
TRY 37.316354
TTD 7.042921
TWD 34.118716
TZS 2644.619134
UAH 43.280315
UGX 3827.016499
USD 1.038621
UYU 45.248818
UZS 13502.074671
VES 61.680527
VND 26219.990341
VUV 123.307186
WST 2.908998
XAF 654.926723
XAG 0.032113
XAU 0.000362
XCD 2.806925
XDR 0.797545
XOF 653.80995
XPF 119.331742
YER 258.564709
ZAR 19.289547
ZMK 9348.837714
ZMW 29.140877
ZWL 334.435579
- Scientists' conference kicks off global AI summit in Paris
- Wallabies coach Schmidt to step down after Rugby Championship
- Indonesia backs climate deals after envoy's Paris skepticism
- Top South Korean officer says was asked to help Yoon martial law bid
- Colombian president says cocaine 'no worse than whisky'
- Australia's Stoinis retires from ODIs ahead of Champions Trophy
- US skipping G20 talks due to S. Africa's 'anti-American' agenda: Rubio
- Honda-Nissan merger talks 'basically over': source
- China's Xi hails Thailand's 'strong' action against scam centres
- Most Asian stocks track Wall St gains, USPS rethink provides boost
US accuses Venezuela doctor of selling ransomware to cybercriminals
A French-Venezuelan cardiologist was accused Monday by the US of selling ransomware to cybercriminals and instructing them on how to extort money from the victims they hacked.
The Brooklyn district attorney's office said Moises Luis Zagala, 55, who lives in the Venezuelan city of Ciudad Bolivar, "not only created and sold ransomware products to hackers, but also trained them in their use."
It said the French-Venezuelan doctor "sold the tools for conducting ransomware attacks, trained the attackers about how to extort victims, and then boasted about successful attacks, including by malicious actors associated with the government of Iran."
The ransomware would encrypt information on the computers that had been hacked, then the attackers would demand money to decrypt it.
One of the first products developed by Zagala was a data hijacking program called "Jigsaw v. 2", which had a "doomsday" counter that kept track of the times the user had tried to destroy it.
"If the user kills the ransomware too many times, then it's clear he won't pay so better erase the whole hard drive," Zagala instructed his clients, according to the US authorities.
In early 2019, Zagala began advertising his new tool on the web, a "Private Ransomware Builder" which he named "Thanos" after the Marvel Comics villain responsible for destroying the half of life in the universe, as well as Thanatos in Greek mythology, associated with death.
The "multi-tasking doctor," as the Brooklyn DA described him, allowed criminals to either buy the program -- and create their own customized ransom notes -- or to join an "affiliate program" to gain access to the program in exchange for a share of the ill-gotten gains, which could be paid in cryptocurrency or regular cash.
His preferred aliases were "Aesculapius," referring to the ancient Greek god of medicine, and "Nosophoros," which means "sickness" in Greek.
Zagala allegedly boasted in specialized hacker forums that the Thanos program was practically undetectable by antivirus programs and that once the encryption was finished the program would self-delete, making it almost impossible for the victim to be able to detect it and retrieve their documents.
Zagala even asked his clients "if you have time and it's not too much trouble" to rate their experience online.
If found guilty, he could be sentenced to 10 years in jail.
K.Inoue--JT
