"Police Arrest Suspected Ransomware Actor in Romania"
European and US law enforcers have joined forces to arrest a suspected ransomware affiliate member who targeted firms in an IT supply chain attack. Europol’s European Cybercrime Centre (EC3) supported the FBI and Romanian National Police in making the arrest at the suspect’s home in Craiova, Romania, in the early hours of yesterday morning. The individual arrested is suspected of targeting a large Romanian IT company that provides services to corporate customers in the retail, energy, and other sectors. According to Europol, the suspect used this access to deploy crypto-ransomware and steal files from many of those customers located both in Romania and abroad. The data stolen by the suspect includes financial information, personal information on employees and customers, and other important documents. Using classic double extortion techniques, the suspect then threatened to publish the information on a data leak site unless a ransom was paid. However, it’s unclear whether each individual company was blackmailed or just the original IT provider.
Infosecurity reports: "Police Arrest Suspected Ransomware Actor in Romania"