Yesterday, US and European law enforcement agencies claimed to have sabotaged operations behind the infamous Remote Access Trojan (RAT) known as NetWire.
US authorities seized the only known domain used to sell a RAT associated with a company known as ‘World Wired Labs’, and Croatian police arrested an individual on suspicion of being the site operator.
According to the California Central District Attorney’s Office, Swiss law enforcement seized the servers hosting the NetWire infrastructure.
The FBI in Los Angeles first launched an investigation into NetWire and World Wired Labs in 2020. According to court documents, they purchased a subscription and used the builder tool to build a customized instance of the RAT.
World Wired Labs marketed the product as a legitimate product for maintaining computer infrastructure, but NetWire was documented countless times in criminal activity, the affidavit alleges. increase. According to the California Federal Attorney’s Office, the RAT was also advertised on hacking forums.
in fact, Information security NetWire has been used by attackers, including in a 2014 incident in which Nigerian 419 scammers used malware to steal victim information, and in another 2017 data theft campaign that impacted thousands of global organizations. Over the years, we have frequently reported stories of
“Today’s actions are a testament to the innovation and flexibility needed to combat cross-border cybercriminals.
“Our office continues to forge international alliances to protect our communities from cyber threats. Criminals use NetWire on a global scale, and we We have responded by dismantling the infrastructure that has caused immeasurable damage to people.”
Donald Alway, assistant director of the FBI’s Los Angeles Field Office, said NetWire is a popular tool for hijacking computers, and “has been used by threat groups and cybercriminals for global fraud, data breaches, and to perpetuate network intrusions.”
