Security News > 2022 > May > Cops' Killer Bee stings credential-stealing scammer
An Interpol-led operation code-named Killer Bee has led to the arrest and conviction of a Nigerian man who was said to have used a remote access trojan to reroute financial transactions and steal corporate credentials.
Interpol linked the suspects to a syndicate of Nigerian fraudsters using a RAT known as Agent Tesla to access business computers and divert monetary transactions to their own accounts.
"Through its global police network and constant monitoring of cyberspace, Interpol had the globally sourced intelligence needed to alert Nigeria to a serious security threat where millions could have been lost without swift police action," the police organization's director of cybercrime Craig Jones said in a statement.
Just last week Interpol and cops in Africa arrested another Nigerian man suspected of running a multi-continent cybercrime ring that specialized in phishing emails targeting businesses.
Agent Tesla RAT. We're told the Killer Bee operation was also based on intelligence received from Trend Micro about the emergence and usage of Agent Tesla malware.
Once Agent Tesla is deployed, it can perform all sorts of nefarious acts including keylogging, screen capture, form-grabbing, and credential stealing.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/05/31/killer_bee_interpol/