Security News > 2021 > September > TrickBot gang developer arrested when trying to leave Korea

TrickBot gang developer arrested when trying to leave Korea
2021-09-06 15:24

An alleged Russian developer for the notorious TrickBot malware gang was arrested in South Korea after attempting to leave the country.

The TrickBot cybercrime group is responsible for a variety of sophisticated malware targeting Windows and Linux devices to gain access to victim's networks, steal data, and deploy other malware, such as ransomware.

After waiting for over a year for his passport to be renewed, the individual attempted to depart South Korea again but was arrested at the airport due to an extradition request by the USA. It is alleged that the man worked as a web browser developer for the TrickBot operation while he lived in Russia in 2016.

The TrickBot gang is responsible for numerous malware, including TrickBot, BazaLoader, BazaBackdoor, PowerTrick, and Anchor.

Both the Ryuk and Conti ransomware operations are believed to be operated by the TrickBot gang and are known to be deployed through their malware.

In court documents from Witte's indictment, prosecutors shared chat logs between TrickBot gang members discussing how they hired developers for various tasks.


News URL

https://www.bleepingcomputer.com/news/security/trickbot-gang-developer-arrested-when-trying-to-leave-korea/