Published 16:43 IST, June 17th 2021

Ukraine Police expose hackers who targeted US, South Korean firms and universities

Ukraine police said that they exposed a hacker group who carried out ransomware attacks on several foreign companies as well as universities between 2019-21.

Reported by: Aanchal Nigam
Follow: Google News Icon
  • share
IMAGE: Unsplash/@NPU_GOV_UA/Twitter | Image: self
Advertisement

Ukraine police on June 16 said that y had exposed a hacker group who carried out ransomware attacks on several foreign companies as well as universities between 2019 and 2021. After carrying out over 20 raids against alleged ransomware hackers from a group named ‘Clop’ which targetted United States and South Korea, Cyber Police Department of National Police of Ukraine confirmed that six arrests have been made. However, it still remains unclear if defendants are affiliates or core developers of ransomware operation. 

Ukrainian law enforcement accused group of running a “double extortion” scheme in which targets that refuse to pay ransom are threatened with leak of stolen data from ir network before files are encrypted. police also said that it seized equipment from gang which according to authorities were behind total financial dams of about $500 million. confiscated items include computer equipment, several cars such as Tesla, Mercedes and 5 million Ukrainian Hryvnia or nearly $185,000 in cash.

Advertisement

Ukraine Police said in a statement on Wednesday, “ hacker group was exposed by officers of Cyberpolice Department toger with Main Investigation Department of National Police. perpetrators were exposed as part of an international operation to promote and coordinate Interpol (IGCI), and toger with law enforcement officials from Republic of Korea and United States.”

“It was established that six defendants carried out attacks of malicious software such as "Ransomware" on servers of American and Korean companies. For deciphering data, y demanded a "ransom", and in case of n-payment, y threatened to disclose confidential data of victims,” it added.

Attacks first began in February 2019

police also elaborated that se attacks by ‘clop; first began in February 2019 when victims included four Korean companies and hackers encrypted 810 internal services and personal computers. As per Tech Crunch report, Clop or what is often styled as “Cl0p” has been linked to a range of high-profile ransomware attacks with targets including United States pharmaceutical giant ExecuPham in April 2020 and Korean e-commerce giant E-Land in vember. police also said, “In 2021, suspects carried out an attack and encrypted personal data of employees and financial reports of Stanford University Medical School, University of Maryland and University of California.”

IM: Unsplash/@NPU_GOV_UA/Twitter

 

Advertisement

16:43 IST, June 17th 2021