Core Members of DoppelPaymer Ransomware Gang Targeted in Germany and Ukraine

2023-03-06 12:13

Law enforcement authorities from Germany and Ukraine have targeted suspected core members of a cybercrime group that has been behind large-scale attacks using DoppelPaymer ransomware.

Both individuals are believed to have taken up crucial positions in the DoppelPaymer group.

DoppelPaymer, according to cybersecurity firm CrowdStrike, emerged in April 2019 and shares most of its code with another ransomware strain known as BitPaymer, which is attributed to a prolific Russia-based group called Indrik Spider.

"However, there are a number of differences between DoppelPaymer and BitPaymer, which may signify that one or more members of Indrik Spider have split from the group and forked the source code of both Dridex and BitPaymer to start their own Big Game Hunting ransomware operation," CrowdStrike said.

Subsequent increased law enforcement scrutiny into its operations prompted the group to switch tactics, introducing ransomware as a means to extort victims and generate illegal profits.

"The DoppelPaymer attacks were enabled by the prolific Emotet malware," Europol said.

News URL

https://thehackernews.com/2023/03/core-members-of-doppelpaymer-ransomware.html

#doppelpaymer #germany #ransomware #ukraine