A federal jury in Connecticut determined that Russian national Oleg Koshkin operates an “encryption” service that hides Kelihos malware from antivirus tools and in the process enables attackers to infect targets with malware (including ransomware) machine.
Court documents and evidence show that Koshkin of former Estonia operates websites such as “Crypt4U.com” and “fud.bz”. These websites claim that “almost all major antivirus software vendors” cannot detect malware. Officials A judge wrote that the department issued. Koshkin and his co-conspirators promised that their services can be used in botnets, remote access Trojans, keyloggers, credential stealers, cryptocurrency miners, and other malicious software.
Koshkin worked with Peter Levashov, who operates the Kelihos botnet, to create a system that allows him to encrypt malware multiple times a day. Koshkin provided Levashov with an encryption service that allowed him to spread Kelihos through many criminal branches, and Levashov used it to distribute spam, collect account credentials, launch denial of service attacks, and spread ransomware.
Officials reported that when FBI officials banned it, the Kelihos botnet had accumulated at least 50,000 infected machines. Koshkin was arrested in 2019 and has been detained since. He faces up to 15 years in prison and will be sentenced on September 20, 2021.
Read the full DOJ release for more details.
Dark Reading’s Quick Hits briefly introduced the importance of breaking news events. For more information about the original source of this news, please click on the link provided in this article.View the complete bio