Friday, 27 November 2020 05:49

Three Nigerian members of powerful international cybercrime group arrested in Lagos

Rate this item
(0 votes)

Three Nigerians suspected of being part of a cybercrime group that has made tens of thousands of victims around the world have been arrested on Thursday in Lagos, Nigeria, Interpol reported.

In a report disclosing its involvement in the investigation, security firm Group-IB said the three suspects are members of a cybercrime group they have been tracking since 2019 and which they have been tracking under the codename of TMT.

Group-IB said the group primarily operated by sending out mass email spam campaigns containing files laced with malware.

To send their email spam, the group used the Gammadyne Mailer and Turbo-Mailer email automation tools and then relied on MailChimp to track if a recipient victim opened their messages.

The file attachments were laced with various strains of malware that granted hackers access to infected computers from where they focused on stealing credentials from browsers, email, and FTP clients.

Group-IB said the group relied "exclusively on a variety of publicly available" malware strains such as AgentTeslaLokyAzoRultPonyNetWire, and others, all available for download for free or for sale at cheap prices on underground forums.

Once the hackers had access to credentials, the TMT group would engage in Business Email Compromise (BEC), a type of online fraud where they'd attempt to trick companies into making payments into the wrong accounts — controlled by the group's members.

More than 50,000 victims

The TMT group sent email spam campaigns in multiple languages and managed to infect companies in the US, the UK, Singapore, Japan, Nigeria, and others.

While an investigation is still ongoing, Interpol and Group-IB said they were able to track more than 50,000 organizations that have been infected with the group's malware.

All in all, more than 500,000 government and private sector companies in more than 150 countries received emails from the group, according to Interpol.

Group-IB said the group was organized in multiple smaller sub-groups that worked together and that many of the TMT's members are still at large.

A Group-IB spokesperson said this group is not the same TMT group referenced in an AdvIntel 2019 report (as being one of the main distributors of the REvil ransomware).

 

ZDNet

November 15, 2024

Oil production rises to 1.8m barrels per day, NNPC announces

Nigeria's state oil firm NNPC said on Thursday it had increased oil production to 1.8…
November 12, 2024

Ex-Gov Aregbesola warns of imminent revolution in Nigeria amid rising misery, hunger, insecurity

Former Osun State Governor Rauf Aregbesola has issued a stark warning about the worsening socio-economic…
November 15, 2024

To influence people, make 3 simple changes to how you talk, says executive coach

Melody Wilding Why do decision-makers at work really choose one person for a role over…
November 09, 2024

Sick man brought to bank on hospital bed to confirm his identity

A severely sick Chinese man was pushed to a local bank branch on a hospital…
November 12, 2024

US court issues fresh arrest warrant for Air Peace CEO Allen Onyema

A United States court has reissued an order for the arrest of Allen Onyema, the…
November 15, 2024

Ukraine is now struggling to cling on, not to win - The Economist

“After 970 days of war,” said Lloyd Austin, America’s defence secretary, visiting Kyiv on October…
November 11, 2024

Hackers are targeting people who type these six words into their computer, smartphones

Computer users Googling whether Bengal cats are legal to own after finding themselves victims of…
October 27, 2024

Nigeria awarded 3-0 win over Libya after airport fiasco

Nigeria have been awarded a 3-0 victory over Libya, and three vital points, from their…

NEWSSCROLL TEAM: 'Sina Kawonise: Publisher/Editor-in-Chief; Prof Wale Are Olaitan: Editorial Consultant; Femi Kawonise: Head, Production & Administration; Afolabi Ajibola: IT Manager;
Contact Us: [email protected] Tel/WhatsApp: +234 811 395 4049

Copyright © 2015 - 2024 NewsScroll. All rights reserved.