• Contact Us
  • Login
Upgrade
Tech News Hero
Advertisement
  • Home
  • News
  • Gadgets
  • Social
  • Gaming
  • Mobile
  • PC
  • Internet
  • Security
  • Apps
No Result
View All Result
  • Home
  • News
  • Gadgets
  • Social
  • Gaming
  • Mobile
  • PC
  • Internet
  • Security
  • Apps
No Result
View All Result
Tech News Hero
No Result
View All Result
Home Security

Authorities take down ‘Imminent Monitor’ RAT malware operation

by technewshero
November 30, 2019
in Security
0
Share on FacebookShare on Twitter
IM RAT

Image: ZDNet

Law enforcement agencies from all over the world announced today they took down the infrastructure of the Imminent Monitor remote access trojan (IM-RAT), a hacking tool that has been on sale online for the past six years.

According to a press release from Europol, the operation had two stages. The first occurred in June 2019, when Australian and Belgian police forces searched the homes of the IM-RAT author and one of his employees.

The second stage took place earlier this week, when authorities took down the IM-RAT website, its backend servers, and arrested the malware’s author and 13 of the tool’s most prolific users.

Europol reported arrests in Australia, Colombia, Czechia, the Netherlands, Poland, Spain, Sweden, and the United Kingdom.

Authorities also served search warrants at 85 locations and seized 430 devices they believed were used to spread the malware.

The UK National Crime Agency (NCA) took credit for a good chunk of the bounty, with 21 search warrants, nine arrests, and more than 100 seized devices.

The story of Imminent Monitor RAT

The Imminent Monitor RAT was created back in 2013 by a malware author going by the name of Shockwave.

It was one of the many RATs developed in the past two decades.

rat-history.jpg

Image: Veronica Valeros

Just like most shady RAT operations, the tool was promoted as a legitimate “remote management tool” meant for system administrators, yet, it was advertised on hacking forums exclusively for a particular niche of buyers — namely, cyber-criminals.

The tool was not that popular in its early years, but as authorities arrested and took down other RATs (LuminosityLink, NanoCore, BlackShades, Orcus), new users flocked to IM-RAT over the past two years.

im-panel.jpg

For example, in June 2018, Fortinet detected a spike in IM-RAT usage, when it detected a campaign targeting Russian businesses.

At the technical level, IM-RAT was on par with the features offered in other RATs, and provided access to stuff like:

  • Controlling a remote desktop “with hyper fast speeds exceeding 50 FPS”
  • Controlling remote webcams “with speeds exceeding 60 FPS”
  • A live keylogging feature
  • Listening on real-time conversations via a computer’s microphone
  • The ability to use infected devices as proxies and hide the hacker’s malicious actions against other targets
  • Dumping passwords from a wide range of apps and stealing passwords

The IM-RAT was advertised in places like HackForums and was distributed and sold via the now-seized imminentmethods.net website, for only $25.

Europol said the tool had more than 14,500 buyers across 124 countries and had been used to infect tens of thousands of victims.

Once Europol started serving search warrants, seizing devices, and making arrests, the operation didn’t go unnoticed, and several of the RAT’s users warned the hacking community of the ongoing raid.

im-rat-raid.png

Image:ZDNet
Previous Post

The world’s greatest VPN provider is offering a Black Friday deal worth seeing

Next Post

Facebook Adds Disclaimer to a User’s Post Under Singapore Fake News Law

technewshero

technewshero

Related Posts

2020 Shows the Danger of a Decapitated Cyber Regime
Security

2020 Shows the Danger of a Decapitated Cyber Regime

by technewshero
January 13, 2021
A ‘Bulletproof’ Criminal VPN Was Taken Down in a Global Sting
Security

A ‘Bulletproof’ Criminal VPN Was Taken Down in a Global Sting

by technewshero
January 14, 2021
The Worst Hacks of 2020, a Surreal Pandemic Year
Security

The Worst Hacks of 2020, a Surreal Pandemic Year

by technewshero
January 15, 2021
Security

How Your Digital Trails Wind Up in the Police’s Hands

by technewshero
December 31, 2020
How to Understand the Russia Hack Fallout
Security

How to Understand the Russia Hack Fallout

by technewshero
December 22, 2020
Next Post

Facebook Adds Disclaimer to a User's Post Under Singapore Fake News Law

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Most Popular

Apple News Plus: 7 best tips for using the iPhone’s new magazine service

Apple News Plus: 7 best tips for using the iPhone’s new magazine service

December 15, 2020
Best cheap gaming mouse for 2021

Best cheap gaming mouse for 2021

January 12, 2021

MACLUNKEY! The Han/Greedo scene has an inexplicable change on Disney+ because George Lucas will never stop changing it – TechNewHero

November 12, 2019

Browse by Category

  • Apps
  • Gadgets
  • Gaming
  • Internet
  • Mobile
  • News
  • PC & Laptops
  • Security
  • Social
Tech News Hero

© 2020 Tech News Hero.

No Result
View All Result
  • Home
  • Landing Page
  • Buy JNews
  • Support Forum
  • Contact Us

© 2020 Tech News Hero.

Welcome Back!

Login to your account below

Forgotten Password?

Create New Account!

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?