The malware attacks included 11 businesses and financial institutions. The GozNym network exemplified the concept of “cybercrime as a service,” according to Europol, offering different criminal services like bulletproof hosters, money mules networks, crypters, spammers, coders, organizers, and technical support. The network advertised its skills on criminal underground, Russian-speaking forums.
Ten members of the criminal network were charged by a federal grand jury in Pittsburgh with conspiracy to commit infecting victims’ computers with GozNym malware, using stolen login credentials and stealing money from victims’ bank accounts. Investigations were carried out in Bulgaria, Georgia, Moldova and Ukraine with criminal prosecutions initiated in Georgia, Moldova, Ukraine and the United States. Five of the defendants reside in Russia and remain fugitives of justice, according to a release.
“International law enforcement has recognized that the only way to truly disrupt and defeat transnational, anonymized networks is to do so in partnership,” US Attorney Scott W. Brady said in a release from the US Department of Justice Thursday. “The collaborative and simultaneous prosecution of the members of the GozNym criminal conspiracy in four countries represents a paradigm shift in how we investigate and prosecute cybercrime. Cybercrime victimizes people all over the world. This prosecution represents an international cooperative effort to bring cybercriminals to justice.”