Two Iranian men charged with the ransomware attack that took down Atlanta

Two Iranian men charged with the ransomware attack that took down Atlanta

The US Treasury Department has placed bitcoin addresses on its sanctions list for the first time after two Iranian hackers were charged with extorting millions of dollars through them. The two addresses belonged to Faramarz Shahi Savandi and Mohammad Mehdi Shah Mansouri, who allegedly created the SamSam ransomware software. The Justice Department unsealed an indictment…

The US Treasury Division has positioned bitcoin addresses on its sanctions checklist for the first time after two Iranian hackers had been charged with extorting thousands and thousands of greenbacks thru them. The two addresses belonged to Faramarz Shahi Savandi and Mohammad Mehdi Shah Mansouri, who allegedly created the SamSam ransomware draw. The Justice Division unsealed an indictment against both men at the original time, alleging that they restful $6 million by concentrating on extra than 200 victims — including the cities of Atlanta, Georgia, and Newark, New Jersey.

SamSam started infecting computer programs in 2015, and it’s been linked to costly and hasty devastating assaults on hospitals and infrastructure. Admire other ransomware, SamSam encrypted customers’ machines and ordered them to funnel money — typically tens of thousands of greenbacks — to a bitcoin story. The Treasury Division says the two accounts above processed over 7,000 transactions, though no longer all had been basically connected to SamSam.

In a press conference, US Licensed professional Craig Carpenito if truth be told helpful journalists that Savandi and Mansouri “worked exhausting to title basically the most susceptible targets that they might well perchance,” and no longer simply because they would be extra susceptible to pay up. “Money is never any longer their sole aim,” he claimed. “They’re looking out for to damage our institutions and severe infrastructure. They’re making an strive to affect our methodology of lifestyles.”

One among Savandi and Mansouri’s most excessive-profile alleged crimes used to be an assault on Atlanta in March 2018. Main overall municipal choices had been affected, including the flexibility to pay water payments or parking tickets, though Atlanta’s emergency products and services remained purposeful. Altogether, the Justice Division lists assaults in 43 US states.

The Justice Division declined to allege what number of of us reported their assaults to law enforcement, or what number of paid the ransom, though it suggested targets no longer to plot so. Previous info reports assemble indicated that some institutions paid up, including Indiana health heart Hancock Health, which paid around $55,000 to liberate its computer programs early this year. The indictment names a dozen victims, including Atlanta, Newark, the Colorado Division of Transportation, the University of Calgary, and several hospitals.

This isn’t the year’s first colossal ransomware indictment; the Justice Division charged a North Korean hacker in September for being inquisitive in regards to the WannaCry ransomware campaign. US law enforcement linked the WannaCry hacker to a executive-subsidized assault, nonetheless Carpenito says this SamSam indictment entails “nothing of that form.”

This is the first time the US has added cryptocurrency wallets to its sanctions checklist, though the Treasury Division’s Command of industrial of Foreign Resources Control (OFAC) talked about the chance in March. The pass makes any salvage together that interacts with the accounts potentially chargeable for sanctions as effectively, and going forward, it effectively bans paying SamSam ransoms.

Read More

Leave a Reply

%d bloggers like this: