An Iranian National has convicted the Robinhood Rainmware operation, which was used to dissolve the network of American cities and organizations, steal and encrypted the network of American cities and organizations in an attempt to get out millions of dollars in a five -year period.
according to a US justice department And one Uncontrolled prosecutionThe 39 -year -old man also known as a man named Sina Ghulinjad, also known as “Sina Gough”, and his conspirators deployed Robinhood Rainsmware on the network from at least January 2019 to March 2024 from January 2019 to March 2024.
The attacks targeted local governments, healthcare providers and non -profit organizations, encrypted the files and demanded bitcoin ransom in exchange for a dikipter and to prevent data leaks.
The victims included Baltimore, Greenville (Northern Carolina), Gosham (Oregan), and Yonkar (New York) as well as organizations such as the Meridian Medical Group and Berkshire Farm Center.
Gholinjad and their co-speculators often accessed the afflicted network using administrative accounts or weaknesses, manually deployed ransomware, and demanded payment through Tor Dark Web sites.
However, it was not until May 2019 that the Robinhood gang got infamous after the Baltimore’s IT system was disrupted for weeks.
The ransomware gang operated data theft in subsequent campaigns, used the threat of leaks as stolen data and additional benefits against the victims.
Robinood stood out at that time to use a valid but weak gigabyte driver (GDRV.SYS) in bringing its own weak driver attacks to shut down antivirus software. This allowed the danger actors to launch their ransomware encrypter without intervention from safety software.
Source: Bleepingcomputer
Ransum notes left on the devices directing the victims to contact them at Tor sites to interact on the ransom.
The prosecution describes how the attackers used virtual private servers in Europe, VPN and Cryptocurrency Mixer to avoid law enforcement.
Gholinjad convicted a northern Carolina federal court and now faced the maximum punishment for a 30 -year jail plot for fraud, computer infiltration, forced recovery and money laundering conspiracy.
Based on the analysis of 14M malicious tasks, search for the top 10 MITERAT & CK techniques behind the 93% attacks and how to defend them against them.
