Ukraine’s cyberpolice has arrested the developer of a distant entry trojan (RAT) malware that contaminated over 10,000 computer systems whereas posing as recreation functions.

“The 25-year-old offender was uncovered by staff of the Khmelnychchyna Cybercrime Division along with the regional police investigative division and the SBU regional division,” reads the cyberpolice’s announcement.

“The person developed viral software program, which he positioned as functions for pc video games.”

On the time of the attacker’s arrest, he had real-time entry to 600 contaminated computer systems, from the place he may obtain recordsdata, steal credentials, drop extra payloads, set up or delete applications, snap screenshots, and intercept sound or video from the pc’s microphone and cameras.

After accumulating that information, the attacker accessed his victims’ accounts to steal “digital funds.” It’s unclear if that’s on-line banking deposits or cryptocurrency belongings.

It’s unclear if the attacker restricted himself to Ukrainian victims or if he focused computer systems in different nations as properly.

The police supplied no particulars about how the hacker distributed the malware apart from as recreation functions. Nevertheless, earlier malware distribution campaigns for comparable infections had been completed via YouTube movies selling recreation mods and cheats, Google Advertisements, malvertizing, social media advertising campaigns, direct messages, and emails.

In the course of the raid on the suspect’s home, the police discovered and confiscated gear the malware operator used for finishing up the malicious acts.

The arrested particular person now faces felony costs for violations of half 5 of Artwork. 361 of Ukraine’s crime legislation, on unauthorized interference with the work of knowledge (automated), digital communication, data and communication methods, and digital communication networks.

The utmost penalty for the above is 15 years of imprisonment.

Regardless of being embroiled in a bloody battle with Russia since February 2022, Ukraine has proven outstanding resilience in combating cybercrime and sustaining legislation and order inside its borders.

The nation’s police pressure has been working arduous to deal with a variety of cybercrimes, from taking down disinformation botnets and arresting ransomware operators to defending advanced cyberattacks on authorities and power infrastructure organizations.