Reveton ransomware gang arrested by Spanish police

Filed Under: Featured, Law & order, Malware, Ransomware, SophosLabs

Spanish police have arrested a dozen individuals suspected of being members of the infamous Reveton ransomware gang.

With assistance from Interpol and Europol, the Spanish police detained the suspects in Spain's Costa del Sol: six Russians, two Ukrainians and two Georgians.

Authorities estimate that this ransomware operation netted the group more than 1 million euros a year.

A video, made available on YouTube by Spanish Brigada de Investigación Tecnológica de la Policía Nacional, shows yesterday's police operation in progress, focusing on the gang's financial cell.

The gang leader, a 27 year-old Russian national, was reportedly arrested in December while holidaying in Dubai UAE, but his arrest was seemingly kept under wraps until they were able to round up the rest of the crew.

Spanish police are still working to extradite him to Spain.

The Reveton crew makes use of ransomware, which is malicious software that locks you out of your computer or your data, and demands money to let you back in.

Reveton pretends to be a warning from the police. It locks you out of your PC, threatens criminal proceedings within 48 hours - usually for accessing file sharing, child pornography or terrorist sites. The ultimate goal is to scare the victim into forking over a fine - typically about $200 USD.

Naked Security writer Paul Ducklin explains Reveton/FBI ransomware, in this great video:

This arrest is a great coup for the Spanish authorities. Working with international and european authorities and firms like Trend Micro, they might have just have dismantled a seriously notorious malware gang.

More than 1200 complaints of a "POLICE VIRUS" were reported to the Spanish authorities - a tiny percentage of the number of suspected victims. There is little doubt however that these 1200 complaints were instrumental in focusing the authorities' efforts on dismantling the Reveton malware gang.

Let this arrest be a reminder that we all have a part to play: reporting cyber crime is essential to ensure these very real crimes get the appropriate consideration. By law, authorities need to record your complaint, and this can be very valuable when trying to negotiate resources for a particular sting

To learn more about reporting computer crime, check out this series authored by cybercrime expert Bob Burls, who served as a Detective in the UK in the Metropolitan Police Computer Crime Unit, the NHTCU and the PCeU:

, , , , ,

You might like

9 Responses to Reveton ransomware gang arrested by Spanish police

  1. antwerpenaar · 929 days ago

    'With assistance from Interpol and Europol, the Spanish police detained the 11 suspects in Spain's Costa del Sol: six Russians, two Ukrainians and two Georgians.'

    Luckily your software is better than your arithmetic! :-)

  2. Trent · 929 days ago

    I wonder if these people are found guilty, what kind of sentence would they get? Are some countries more lenient as far as jail time goes than others?

  3. JimboC_Security · 929 days ago

    This is great news. Reveton has been a very prevalent threat since late 2011. Is it too much to hope for that there will be no further variants of this particular malware? Unfortunately other ransomware threats are here to stay.

    Now that this criminal gang has been caught, the next challenge is to make the charges stick using solid evidence. Hopefully the charges will not be dropped due to an inconsistency/technicality.

    Thanks for posting this story.

  4. James RW · 925 days ago

    That is acceptable. I hesitate to provide my e-address as I already receive more 'spam' than all the armies of the world could comsume in a hundred years.

  5. Dave B · 892 days ago

    Unfortunately the number of instances of this infection do not seem to be going down. I am still seeing plenty of infections in the field.

  6. Alan · 819 days ago

    Start hanging these mf'rs and they'll drop off.

  7. Anonymous · 510 days ago

    give them life..stop being soft

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Hi. I am a social, brand and communications expert with 10 years in senior roles in the tech space. I'm currently Sophos' s Global Director of Social Media and Communities. Proudest work achievement? Creating and launching award-winning Naked Security. Outside work, I am a mean cook, an avid reader, a chronic insomniac, a podcast obsessive and blogger .