Feds Charge "GozNym" Members for 2015-2016 Cyber Heists


Feds Charge "GozNym" Members for 2015-2016 Cyber Heists (May 16, 2019)

Law enforcement agencies in the United States and Europe have formally charged 11 men for their involvement in the “GozNym” malware heists carried out between October 2015 and December 2016. GozNym, an international cybercriminal malware network, is suspected of stealing $100 million from approximately 41,000 victims utilizing the stealthy GozNym banking trojan. According to the indictment, the defendants advertised their specialized technical skills and services on online criminal forums to provide “cybercrime as a service.” The GozNym malware gets its name because it combined both stealth and power with the Nymaim malware strain and the Gozi banking trojan. The five Russian nationals charged in the case remain at large, and The Justice Department is working with authorities in Georgia, Ukraine, and Moldova to build prosecutions against defendants in those countries.

Recommendation: Bank accounts and credit card numbers should be protected with the utmost care, and only used with vendors that you trust to keep your information in compliance with the relevant standards. Regular monitoring of financial accounts in addition to identity protection and fraud prevention services can assist in identifying potential theft of data.

Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.