- Gentlemen, start your drones: Judge’s ruling opens door for commercial use
- Soldier who hid, bragged about not saluting flag to be punished — in secret
- ‘Maverick’ of the seas: ‘Top Gun’ school for U.S. ship officers to launch
- Putin declares Sochi Paralympics open amid Ukrainian protest
- ‘In Jesus name, we pray’ sparks ire at Ohio council meeting
- Navy’s first laser weapon ready for prime time; drone killer to deploy this summer
- Billionaire backer: Rick Santorum ‘needs to be heard’ in 2016
- Obamacare fallout: 49 percent pessimistic; 45 percent ‘scared’
- DHS accused of holding U.S. citizen at airport, using emails to pry into her sex life
- Seattle socialist: Minimum-wage discussion skewed by ‘right-wing’ GAO analysis
Feds: 3 nabbed for widespread Gozi computer virus
NEW YORK (AP) - A computer virus that spread to more than a million computers worldwide, including some at NASA, and produced at least $50 million in illegal profits or losses to victims should be a “wake-up call” for banks and consumers unaware of the threat posed by Internet criminals, a prosecutor said Wednesday.
U.S. Attorney Preet Bharara and George Venizelos, head of the New York FBI office, warned of the growing threat to financial and international security as they announced that a 2 1/2-year probe had resulted in three arrests, two of them overseas, and the seizure of vast amounts of computer-related evidence that will take months or years to fully analyze. They said the Gozi virus had infected 40,000 computers in the United States since 2005, including 190 at the National Aeronautics and Space Administration, along with computers in Germany, Great Britain, Poland, France, Finland, Italy, Turkey and elsewhere.
“This case should serve as a wake-up call to banks and consumers alike because cybercrime remains one of the greatest threats we face, and it is not going away anytime soon,” Bharara said. “It threatens individuals, businesses and governments alike.”
He told a news conference that cybercriminals “believe that their online anonymity and their distance from New York render them safe from prosecution, but nothing could be further from the truth.”
“That vast pile of data is almost certain to aid criminal investigation at FBI offices around the country as well as law enforcement agencies around the world,” he said. “It is more than standard boilerplate to say that this investigation is very much ongoing.”
So far, the investigation has produced three arrests, including that of Nikita Kuzmin, a 25-year-old Russian who pleaded guilty to computer intrusion and fraud charges in Manhattan in May 2011, admitting his role in creating the virus. The plea by the Moscow resident was followed by the arrest in November of a co-conspirator in Latvia and another in Romania last month. Extradition proceedings are under way against both on various criminal charges, including conspiracy.
The NASA breach occurred from Dec. 14, 2007, to Aug. 9, 2012, with the most damage occurring between May and August last year, according to documents filed in U.S. District Court in Manhattan. The infected computers sent data without user authorization, including login credentials for an eBay account and a NASA email account, details of visited websites and the contents of Google chat messages.
Mihai Ionut Paunescu, 28, who was arrested in Romania, set up online infrastructure that allowed others to distribute destructive viruses and malicious software, including ones dubbed Zeus Trojan, SpyEye and BlackEnergy, according to a criminal complaint filed against him. The document said Paunescu, a Romanian national residing in Bucharest, was also known as “Virus.”
The Gozi virus was designed in 2005 and distributed beginning in 2007, when it was secretly installed onto each victim’s computer in a manner that left it virtually undetectable by antivirus software.
Extradition proceedings had begun to bring them to New York for trial. Charges against Kuzmin carry a maximum penalty of 95 years in prison while charges against Calovskis carry up to 67 years and charges against Paunescu have a maximum penalty of 60 years.
Authorities say Kuzmin began designing the Gozi virus in 2005 to steal personal bank account information of individuals and businesses in a widespread way. They said he hired a programmer to write the software and began renting it to others for a weekly fee, advertising it on Internet forums devoted to cybercrime and other criminal activities. Beginning in 2009, Kuzmin offered the code to others for $50,000 plus a guaranteed share of future profits, court documents said.
Authorities said Calovskis had training and expertise in computer programming when he was hired by a co-conspirator to upgrade the virus with new code that would deceive victims into divulging additional personal information, such as a mother’s maiden name. Federal authorities sought at least $50 million from Calovskis, an amount they said was obtained through the conspiracy.
TWT Video Picks
Taxpayers must pay the freight for over-budget train projects
- CPAC 2014: Rand Paul urges conservatives to fight for liberty
- Putin has transformed Russian army into a lean, mean fighting machine
- Soldier who hid to avoid saluting the flag to be punished in secret; Army won't release details
- EDITORIAL: Connecticut revolts against gun controls that could criminalize 300,000
- Kim Jong-un calls for execution of 33 Christians
- Bill Clinton poses for photo with Bunny Ranch prostitutes
- Bill Clinton cashes in on struggling nonprofit hospital
- U.S. pilot scares off Iranians with 'Top Gun'-worthy stunt: 'You really ought to go home'
- EDITORIAL: Harry Reid's corrupt Senate house of cards
- Russias Putin nominated for Nobel Peace Prize
Pope Francis meets his 'mini-me'
Celebrity deaths in 2014
Winter storm hits states — again