Symantec have revealed the findings of a decade-long research campaign that helped unearth an international cybercriminal gang dubbed “Bayrob.”
Symantec’s wealth of intelligence led to a successful FBI sting operation and the capture of three criminals in Romania. The group is responsible for stealing up to $35 million USD from victims through auto auction scams, credit card fraud and computer intrusion.
Through its research, Symantec discovered multiple versions of Bayrob malware, collected helpful intelligence data, and witnessed Bayrob as it morphed from online fraud to a 300,000+ botnet for cryptocurrency mining. Over time, Symantec’s research team gained deep technical insight into Bayrob’s operations and its malicious activities, such as its recruitment of money mules.
“The Symantec Security Response team responsible for gathering the intelligence that assisted the FBI in this operation has an unparalleled track record when it comes to detecting cyber criminals and their stealthy methods,” said Mike Fey, president and chief operating officer at Symantec. “We expect our success record will continue to grow now that we’ve combined Symantec’s global threat intelligence with Blue Coat. By unifying our threat telemetry we’re seeing 500,000 additional detections every day to help us get ahead of attacks and defend our customers.”
Since 2007, Symantec gathered insight of infection vectors, malicious programs and exploitation methods, as well as intelligence about the gang’s victims. These investigations and countermeasures assisted the FBI and authorities in Romania in building their case to arrest three of Bayrob’s key actors and extradite them to the U.S.
For more information about Symantec’s research campaign that discovered and tracked Bayrob, visit Symantec’s Security Response blog.