Security scientists have revealed how patient detective get the job done enabled them to trace and discover a suspected prolific cyber-legal, who was lastly arrested in May.
A two-year investigation into the individual, who often went by the online moniker “Dr Hex,” finished when Interpol’s Operation Lyrebird swooped on the man in Morocco previously this yr.
Team-IB’s Risk Intelligence team claimed the individual was energetic considering the fact that 2009 and allegedly liable for phishing, defacing, malware progress, fraud, and carding, resulting in hundreds of unsuspecting victims. These included shoppers of French telecoms corporations, financial institutions and other multinationals.
The path started when the risk intelligence workforce discovered and deanonymized a phishing package that was employed to target a French bank. It identified that practically just about every script applied in the package showcased the title “Dr Hex” and an email tackle.
That email led them to a YouTube channel signed up under the exact same title, and in transform to an Arabic crowdfunding system, which uncovered an additional identify related with the individual. This name was evidently employed to sign up two domains established working with the email from the phishing package.
“Using its patented graph network examination technology, Team-IB researchers created a network graph, based on the email tackle from the phishing package, that confirmed other components of the menace actor’s destructive infrastructure used by him in numerous campaigns together with his private internet pages,” Group-IB explained.
“A whole of five email addresses affiliated with the accused were discovered, together with six nicknames, and his accounts on Skype, Facebook, Instagram, and YouTube.”
More assessment of this electronic footprint uncovered that from 2009 to 2018, the risk actor defaced above 130 web internet pages while also putting up on underground platforms — indicating he was concerned in malware growth.
The study helped Interpol and Moroccan law enforcement at last track down the unique.
“This is a important success towards a suspect who is accused of targeting unsuspecting people and corporations throughout several areas for years, and the circumstance highlights the menace posed by cybercrime around the world,” remarks Interpol govt director of law enforcement solutions, Stephen Kavanagh.
“The arrest of this suspect is down to excellent worldwide investigative operate and new approaches of collaboration each with Moroccan law enforcement and our vital personal sector partners this kind of as Group-IB.”
Some parts of this article are sourced from: