Fifty Russian Hackers Arrested for Stealing $25.5M

Russia has arrested 50 people accused of using malware to steal more than 1.7bn roubles ($25m; £18m).The gang allegedly seeded websites with malware that gave them access to victims' PCs and, from there, their bank accounts.

Technical tricks used by the hackers made it hard for security software to spot the malicious code once it had compromised a machine.It is believed to be the largest ever arrest of hackers in Russia.

The Federal Security Service (FSB) — alongside Interior Ministry and National Guard troops — made arrests in 15 regions across the country.

"As a result of [house] searches a large quantity of computer equipment was confiscated along with communications gear, bank cards in false names, and also financial documents and significant amounts of cash confirming the illegal nature of their activity," the FSB said.

The gang is believed to have stolen cash using a malicious trojan called Lurk that it hid on some of Russia's most popular websites.

Anyone visiting a website booby-trapped with Lurk would be infected with the malware. Once on a victim's PC, the malware then downloaded more software modules, giving the cyber thieves remote access to the machine.


This was used to steal login names and passwords for online bank accounts. In particular, they targeted accounts held at Sberbank - one of Russia's largest banks.

"Lurk started attacking banks one-and-a-half years ago; before then its malicious program targeted various enterprise and consumer systems," said Ruslan Stoyanov, head of computer incident investigation at Kaspersky Lab that helped uncover the gang's activities.

Mr Stoyanov said Kaspersky helped police profile the gang's network of computers and servers used to grab cash, and from that information they were able to trace the individuals involved.

The arrests helped to thwart pending money transfers that would have netted the group a further 2.3bn roubles, the FSB said.