A malicious hacking group, thought to have been working since a minimum of 2013, could have suffered a major blow after the arrest of a suspected main member by Spanish police late final week.
Spain’s Nationwide Police arrested a Venezuelan man in Alicante on Thursday, within the perception that he’s linked to the Kelvin Safety gang.
In an announcement posted on Telegram, Spanish police described Kelvin Safety as one of many world’s most necessary malicious hacking teams, having carried out over 300 assaults in additional than 90 international locations within the final three years.
Victims of the cybercrime gang have included metropolis councils in Madrid, Seville, Badajoz, and the native authorities of Castilla-La Mancha, with assaults sometimes seeing malicious hackers exploit vulnerabilities to entry login credentials and steal confidential info that they later promote by means of darkish internet felony boards.
Kelvin Safety has generally tried to current itself as a penetration testing service, claiming – considerably unconvincingly – that its intention is to warn hacked corporations about safety issues on their networks, however then later providing stolen information on the market after breached companies ignore their advances.
It ought to go with out saying {that a} need to show safety weaknesses is not any excuse for promoting exfiltrated delicate information on the darkish internet that cybercriminals and fraudsters can exploit.
The Italian department of Vodafone is one alleged previous sufferer of the Kelvin Safety gang; in September final yr, the gang supplied to promote 310 GB of knowledge they claimed they’d stolen from the telecoms group.
It’s understood that an unnamed multinational vitality firm additionally fell sufferer to the cybercrime gang in the course of final month, having had a database exfiltrated from its servers containing particulars of over 85,000 shoppers.
The person arrested in Spain final week – who has not been named – was described by police as a central a part of Kelvin Safety’s money-making operation, liable for laundering funds by means of cryptocurrency exchanges.
A video launched by Spanish police exhibits footage of officers raiding the suspect’s dwelling for proof earlier than taking the suspect into custody.
The arrested particular person faces prices associated to his membership of a felony group, organisation, cash laundering, and pc misuse.
Extra particulars of the investigation have been shared in a police press launch, the place they describe how final week’s arrest was the newest step in an investigation that started in December 2021.
Editor’s Word: The opinions expressed on this visitor writer article are solely these of the contributor and don’t essentially mirror these of Tripwire.