Canadian Cybercriminal Pleads Guilty to “NetWalker” Attacks in US

upnorth

upnorth

Level 68
Thread author
Verified
Top Poster
Malware Hunter
Well-known
Jul 27, 2015
5,458
Content source
https://nakedsecurity.sophos.com/2022/07/04/canadian-cybercriminal-pleads-guilty-to-netwalker-attacks-in-us/
If you’re a Naked Security Pocast listener, you may remember, back in March 2022, that we spoke about a convicted cybercriminal from Canada by the name of Sebastien Vachon-Desjardins.

By all accounts, he was part of several so-called Ransomware-as-a-Service (RaaS) gangs, such as REvil and NetWalker, where the actual ransomware attackers act as “affiliates” for the core ransomware creators, in return for handing over an AppStore-like or Google Play-like 30% cut of every blackmail payment they extort. Simply put, the core gang members create the malware samples, run the darkweb servers that handle the “negotiations” with victims, and collect the extortion payments…while the affiliates handle breaking into victims’ networks, mapping them out, and lining up the final attack in which as many computers on the network as possible have their data scrambled at the same time. The “business theory”, if we can call it that, is that by taking 30% of every successful attack, the core criminals become extremely wealthy indeed, but keep a low profile away from the network-cracking limelight.

At the same time, by handing 70% to their “affiliates”, they encourage those co-conspirators to make each attack as debilitating as possible, potentially increasing the amount that victims can ultimately be squeezed into paying to get their business running again.
Click to expand...
Vachon-Desjardins had been a federal government worker in the Canadian Capital Region (he comes from Gatineau in Quebec, directly across the river from the federal capital Ottawa in Ontario). He seems to have decided that joining the cybercrime underworld would be much more lucrative than his government job, and it seems that did indeed rack up a small fortune in illegal earnings…until he was identified, arrested and prosecuted in Canada. After being sentenced to nearly seven years in a Canadian prison, he was then extradited to Tampa, Florida in the US, to face four federal charges there:
  • Conspiracy to Commit Computer Fraud
  • Conspiracy to Commit Wire Fraud
  • Intentional Damage to a Protected Computer
  • Transmitting a Demand in Relation to Damaging a Protected Computer
The choice of Tampa for his trial was because a known victim of one of his “NetWalker” ransomware attacks is based there. Vachon-Desjardins has now pleaded guilty to all four charges
Click to expand...
The wire fraud offence alone carries a maximum sentence of 20 years, but we’re assuming that the court will impose a lighter sentence on account of the plea deal being signed. The plea agreement makes it clear that “[the] defendant is pleading guilty because [he] is in fact guilty.” And part of the deal includes that the “defendant agrees to cooperate fully with the United States in the investigation and prosecution of other persons, […including] a full and complete disclosure of all relevant information, including production of any and all books, papers, documents, and other objects in defendant’s possession or control.”

In other words, Vachon-Desjardins is now expected to spill the beans, and rat out his former chums in the ransomware scene.
Click to expand...
nakedsecurity.sophos.com

Naked Security – Sophos News

nakedsecurity.sophos.com nakedsecurity.sophos.com
 
  • Like
  • Applause
  • +Reputation
Reactions: Matt_, SeriousHoax, Gandalf_The_Grey and 4 others
upnorth

upnorth

Level 68
Thread author
Verified
Top Poster
Malware Hunter
Well-known
Jul 27, 2015
5,458
An ex-Canadian government worker who extorted tens of millions of dollars from organizations worldwide using the NetWalker ransomware has been sent down for 20 years.

Sebastian Vachon-Desjardins, 35, of Gatineau, Quebec, was also ordered to pay back $21.5 million bagged from his cyberattacks against dozens of organizations globally, from corporations and municipalities to hospitals, law enforcement, emergency services, school districts, colleges, and universities. "The defendant in this case used sophisticated technological means to exploit hundreds of victims in numerous countries at the height of an international health crisis," said Roger Handberg, US Attorney for the Middle District of Florida, in a statement yesterday.

NetWalker ransomware affiliates – losers who rent the malware to use against victims – specifically attacked hospitals during the height of the COVID-19 pandemic, using the global crisis to extort healthcare organizations.
Click to expand...
www.theregister.com

NetWalker ransomware crook jailed for 20 years

And note to his crime pals – he said he would sing like a canary
www.theregister.com www.theregister.com
 
  • Like
  • Applause
Reactions: Gandalf_The_Grey and harlan4096
You must log in or register to reply here.

Similar threads

vtqhtr413
    • Like
UK Twitter Celebrity Hacker Pleads Guilty in US
Replies
0
Views
530
News Archive
vtqhtr413
vtqhtr413
Lymphocyte
    • Like
Security News LockBit ransomware affiliate gets four years in jail, to pay $860k
Replies
0
Views
909
Security News
Lymphocyte
Lymphocyte
LASER_oneXM
    • Applause
NetWalker ransomware affiliate sentenced to 80 months in prison
Replies
0
Views
594
News Archive
LASER_oneXM
LASER_oneXM

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top