US accuses Venezuela doctor of selling ransomware to cybercriminals / Photo: NICOLAS ASFOURI - AFP/File
SCS
0.0200
The Japan Times - US accuses Venezuela doctor of selling ransomware to cybercriminals
EUR
-
AED 4.261413
AFN 75.996844
ALL 96.469972
AMD 440.859721
ANG 2.076826
AOA 1062.731223
ARS 1658.379347
AUD 1.735465
AWG 2.088336
AZN 1.976923
BAM 1.952647
BBD 2.336527
BDT 141.890866
BGN 1.948383
BHD 0.437457
BIF 3422.550055
BMD 1.160186
BND 1.493388
BOB 8.016055
BRL 6.23067
BSD 1.160127
BTN 105.249037
BWP 15.493979
BYN 3.345697
BYR 22739.654605
BZD 2.333232
CAD 1.61469
CDF 2523.405969
CHF 0.931601
CLF 0.026224
CLP 1028.749395
CNY 8.085166
CNH 8.082776
COP 4286.494504
CRC 566.984399
CUC 1.160186
CUP 30.744941
CVE 110.508217
CZK 24.26211
DJF 206.188794
DKK 7.47101
DOP 73.444309
DZD 151.161901
EGP 54.801644
ERN 17.402797
ETB 180.583477
FJD 2.644112
FKP 0.866729
GBP 0.866967
GEL 3.121355
GGP 0.866729
GHS 12.570667
GIP 0.866729
GMD 85.85421
GNF 10151.631932
GTQ 8.894636
GYD 242.668125
HKD 9.046264
HNL 30.756994
HRK 7.535532
HTG 151.964598
HUF 384.987039
IDR 19618.753029
ILS 3.648907
IMP 0.866729
INR 105.270041
IQD 1519.844262
IRR 48872.854786
ISK 146.241951
JEP 0.866729
JMD 183.07436
JOD 0.822618
JPY 183.398841
KES 149.66446
KGS 101.458752
KHR 4669.750906
KMF 493.079652
KPW 1044.178168
KRW 1709.5816
KWD 0.357315
KYD 0.966739
KZT 593.222029
LAK 25077.430725
LBP 103894.697845
LKR 359.379652
LRD 213.01461
LSL 19.056108
LTL 3.425729
LVL 0.701786
LYD 6.294057
MAD 10.721868
MDL 19.889881
MGA 5284.649725
MKD 61.55675
MMK 2436.172838
MNT 4132.826319
MOP 9.320249
MRU 46.181267
MUR 53.740276
MVR 17.936921
MWK 2009.443348
MXN 20.445506
MYR 4.707461
MZN 74.140241
NAD 19.056108
NGN 1647.732052
NIO 42.521271
NOK 11.703804
NPR 168.39806
NZD 2.016572
OMR 0.446098
PAB 1.160127
PEN 3.898811
PGK 4.947326
PHP 68.902358
PKR 324.765239
PLN 4.220121
PYG 7929.195447
QAR 4.224529
RON 5.089394
RSD 117.38307
RUB 90.492644
RWF 1690.391671
SAR 4.35073
SBD 9.424903
SCR 15.553862
SDG 697.85642
SEK 10.702048
SGD 1.495342
SHP 0.87044
SLE 28.018933
SLL 24328.52911
SOS 663.05081
SRD 44.503017
STD 24013.517303
STN 24.82799
SVC 10.150608
SYP 12831.16904
SZL 19.062292
THB 36.491929
TJS 10.783187
TMT 4.072254
TND 3.365745
TOP 2.79345
TRY 50.209433
TTD 7.877279
TWD 36.672918
TZS 2923.670266
UAH 50.306362
UGX 4124.339762
USD 1.160186
UYU 44.897497
UZS 13887.432307
VES 395.989394
VND 30483.899221
VUV 140.452513
WST 3.231724
XAF 654.899428
XAG 0.012987
XAU 0.000253
XCD 3.135462
XCG 2.090824
XDR 0.815432
XOF 653.769238
XPF 119.331742
YER 276.675509
ZAR 19.039698
ZMK 10443.074517
ZMW 23.289391
ZWL 373.579567
- Ugandan opposition says leader seized by army helicopter after election
- US Supreme Court agrees to hear Monsanto weedkiller case
- Ugandan opposition leader seized by army helicopter after election
- Brazil, EU hail trade deal as victory for multilateralism
- 'Nothing's changed' in Gaza as US peace deal enters second phase
- Trump threatens tariffs as US lawmakers back Denmark, Greenland
- Swiss fire fatalities not given routine autopsies: lawyers
- Trump threatens tariffs on nations that don't back Greenland takeover
- Trump says 'thank you' to Iran for not hanging protesters
- Machado says Venezuela beginning 'transition' to democracy
US accuses Venezuela doctor of selling ransomware to cybercriminals
A French-Venezuelan cardiologist was accused Monday by the US of selling ransomware to cybercriminals and instructing them on how to extort money from the victims they hacked.
The Brooklyn district attorney's office said Moises Luis Zagala, 55, who lives in the Venezuelan city of Ciudad Bolivar, "not only created and sold ransomware products to hackers, but also trained them in their use."
It said the French-Venezuelan doctor "sold the tools for conducting ransomware attacks, trained the attackers about how to extort victims, and then boasted about successful attacks, including by malicious actors associated with the government of Iran."
The ransomware would encrypt information on the computers that had been hacked, then the attackers would demand money to decrypt it.
One of the first products developed by Zagala was a data hijacking program called "Jigsaw v. 2", which had a "doomsday" counter that kept track of the times the user had tried to destroy it.
"If the user kills the ransomware too many times, then it's clear he won't pay so better erase the whole hard drive," Zagala instructed his clients, according to the US authorities.
In early 2019, Zagala began advertising his new tool on the web, a "Private Ransomware Builder" which he named "Thanos" after the Marvel Comics villain responsible for destroying the half of life in the universe, as well as Thanatos in Greek mythology, associated with death.
The "multi-tasking doctor," as the Brooklyn DA described him, allowed criminals to either buy the program -- and create their own customized ransom notes -- or to join an "affiliate program" to gain access to the program in exchange for a share of the ill-gotten gains, which could be paid in cryptocurrency or regular cash.
His preferred aliases were "Aesculapius," referring to the ancient Greek god of medicine, and "Nosophoros," which means "sickness" in Greek.
Zagala allegedly boasted in specialized hacker forums that the Thanos program was practically undetectable by antivirus programs and that once the encryption was finished the program would self-delete, making it almost impossible for the victim to be able to detect it and retrieve their documents.
Zagala even asked his clients "if you have time and it's not too much trouble" to rate their experience online.
If found guilty, he could be sentenced to 10 years in jail.
K.Inoue--JT
