POST Online Media Lite Edition



 

Australian Federal Police charges man with creating global spyware tool

Christian Fernsby |
An Australian man, 24, who sparked a global law enforcement operation for allegedly creating and selling spyware purchased by domestic violence perpetrators and other criminals, has been charged by the AFP.

Article continues below




The man, who was 15 years old when he allegedly created the Remote Access Trojan (RAT), was scheduled to appear in Brisbane Magistrates Court on 29 July, 2022. The matter was adjourned until 19 August 2022.

In a world first for any law enforcement agency, the AFP was not only able to identify the alleged Australian offenders who bought the RAT but also identified the Australian victims who were targeted.

AFP investigators served a summons on the man at his Melbourne home on 6 July, 2022, to face six charges for his alleged role in creating, selling and administering the RAT between 2013 and 2019.

A woman, 42, who lives at the same Frankston home as the man, was served a summons to face one count of dealing with the proceeds of crime. She also faced Brisbane Magistrates Court on 29 July, 2022.

It will be alleged the Frankston man engaged with a network of individuals and sold the spyware, named Imminent Monitor (IM), to more than 14,500 individuals across 128 countries.

The AFP identified there were 201 individuals in Australia who bought the RAT. A statistically high percentage of Australia-based PayPal purchasers of IM RAT (14.2%) are named as respondents on domestic violence orders. Additionally, one of these purchasers is also registered on the Child Sex Offender Register.

Of the 14 individuals, 11 bought the RAT during the active period of their domestic violence order (DVO) or within two years a DVO was issued.

Once the RAT was installed on a victim’s computer, users could control a victim’s computer; steal their personal information or spy on them by turning on webcams and microphones on devices – all without their knowledge.

It could also log key strokes – meaning users could see what was being written in emails and other documents – such as the home address of a victim.

The spyware could be installed a number of ways, including phishing (duping a victim into opening an email or text message).

The AFP believes there were tens of thousands of victims globally.

In Australia, the AFP identified 44 victims. In October 2019, the AFP released an intelligence bulletin to Australian state and territory partners about a number of suspects in their jurisdictions.

AFP investigations are ongoing and it would be inappropriate to elaborate further.

The RAT cost about AUD$35 (US$25) and was allegedly advertised on a forum dedicated to hacking. It will be alleged the man made between $300,000 and $400,000 from selling the malware.

Financial analysis showed that most of the money raised from allegedly selling the RAT paid for the man’s food delivery services and other consumable and disposable items.

Operation Cepheus began when the AFP received information from cyber security firm Palo Alto Networks and the FBI about a suspicious RAT in 2017.

The information sparked a global investigation, which included more than a dozen law enforcement agencies in Europe. Eighty-five search warrants were executed globally, with 434 devices seized and 13 people arrested for using the RAT for alleged criminality.

A team of five AFP cybercrime investigators worked on gathering critical intelligence as well as shutting down the RAT. Once the AFP shut down the RAT in 2019, it stopped operating on all devices across the globe.

The same year, the AFP received admissible evidence from overseas law enforcement agencies that enabled the Australian man to be arrested.

The AFP-led investigation executed two search warrants in 2019 at the man’s then home in Brisbane. Investigators seized a number of devices including a custom-built computer containing code consistent with the development and use of the RAT.

Tips to protect yourself from remote access trojan malware:

Be aware of the infection signs:
• Your internet connection is unusually slow;
• Unknown processes are running in your system (visible in the Process tab in Task Manager);
• Your files are modified or deleted without your permission;
• Unknown programs are installed on your device (visible in the Add or Remove Programs tab in the Control Panel).

Protect yourself:
• Ensure that your security software and operating system are up to date;
• Ensure that your device’s firewall is active;
• Only download apps and software from sources you can trust;
• Cover your webcam when not in use;
• Regularly back up your data;
• Be wary while browsing the internet and do not click on suspicious links, pop ups or dialogue boxes;
• Keep your web browser up to date and configured to alert new window is opened or anything is downloaded;
• Do not click on links and attachments within unexpected or suspicious emails.

What to do if infected with the malware:
• Disconnect your device from the network as soon as possible, in order to prevent additional malicious activity;
• Install security software from a trustworthy source;
• Run a full scan of your device and remove threats by using a security software;
• Once you think the infection has been removed, change the passwords for your online accounts and check your banking activity. Report anything unusual to your bank and, as needed, to the Report Cyber website;
• Learn how to protect your computer from future infections and avoid data loss.


What to read next

UK Prime Minister's Office was infected with Pegasus spyware
Huge data leak: Journalists from biggest media targets for surveillance by governments
Australian authorities smash Sydney Airport drug smuggling ring

U.S.: Below normal temperatures in south and east, west will experience above normal temperatures

 
Under an intense surge of arctic air, Friday morning will begin with the coldest temperatures so far this season across much of the central and eastern U.S. with blustery conditions and a piercing wind chill.
 
 

Latest

U.S. rigs increased nicely
New York: More than $15.5 million awarded through Office of Strategic Workforce Development
Amgen will expand in North Carolina, create 370 jobs
NexGen Cabinets selects North Carolina for East Coast operation

NEWS

UK: Sizewell A delivers groundbreaking turbine hall milestone

UnitedHealthcare CEO Brian Thompson assassinated in New York
U.S.: Arctic outbreak of cold air will expand, dangerously cold wind chills expected
Finland, Sweden complete repairs on Baltic Sea cables
Black boxes from Vilnius plane crash to be sent to Germany
U.S.: Strong winds, lower elevation rain and higher elevation snow
 

BUSINESS

EU Commission, EIB to invest in European battery manufacturing

U.S. oil rigs continue decline
EU ports handled 3.4 billion tonnes of freight in 2023
U.S. oil rig count down by 1, Canadian up by 1
Philippines breaks ground on massive 5 billion kWh solar farm
U.S. drillers cut oil and gas rigs this week, says Baker Hughes
 

Trending Now

U.S.: Below normal temperatures in south and east, west will experience above normal temperatures

U.S. rigs increased nicely

New York: More than $15.5 million awarded through Office of Strategic Workforce Development

Amgen will expand in North Carolina, create 370 jobs


POLITICS

Lieutenant Governor Way to lead inaugural New Jersey-India commission trip to India

Commission approves €1.9 billion German State aid in favor of DB Cargo
Pakistan proposes Russia take part in oil and gas exploration on its shelf
Michigan Governor met with business leaders and foreign officials in Spain
Spain passes measures to protect workers amid climate emergency
Ontario investing $1 billion to help municipalities build more homes
 

Today We Recommend

Brazil unveils investment plan to spur agro-industrial development


Highlights 

New York: More than $15.5 million awarded through Office of Strategic Workforce Development

Amgen will expand in North Carolina, create 370 jobs

NexGen Cabinets selects North Carolina for East Coast operation


COMPANIES

CELIA submarine cable connecting Caribbean to U.S.

Amazon sued over slow deliveries to low-income areas in U.S.
Saudi Aramco acquires 10% stake in Renault-Geely JV
21CS will create 25 new jobs in Carteret County, North Carolina
Heidelberg Materials acquires Giant Cement to boost U.S. footprint
Commission finds Estonian State aid to agricultural company Tartu Agro to be incompatible State aid
 

CAREERS

Pan-African legal group CLG appoints Leon Van der Merwe as partner

Stellantis board accepts Carlos Tavares’ resignation as CEO
Joe Depa named as EY global chief innovation officer
Comviva appoints chief strategy, technology and transformation officer
Orion Innovation names Garima Singh chief people officer
Rohde & Schwarz appoints Markus Fischer as COO
 

ECONOMY

Indonesia goes from $0.6 billion deficit to $5.9 billion surplus

Greece to repay $5.3 billion bailout debt early
Fraser Institute: Canada’s debt ranking falls from best in G7 to 7th worst
Kuwait reports $5.2 bln budget deficit in FY 2023-24
Eurozone reports modest Q1 GDP growth, stable annual inflation
Italy sees faster economic growth in Q1
 

EARNINGS

Ericsson Q2 sales down but North America up

Lockton revenue $3.55 billion
Motorcar Parts of America Q4 sales $189.5 million
Limoneira Q2 revenue $44.6 million
Lululemon athletica Q1 revenue increased 10% to $2.2 billion
PVH Q1 GAAP EBIT $205 million
 

OP-ED

Micromanaging is the worst enemy of efficiency and teamwork

Niger set to monetize massive gas reserves through Saharan natural gas pipeline
Putting the brakes on EV folly that choked the market
Oil discovery in Kavango Basin may mean huge benefits for Namibians
Cape Town and Dubai battle over Africa's energy future
Is America going to lose its superpower status?
 

AGRIFISH

Maltese official hails bluefin tuna export to China

Brazil unveils investment plan to spur agro-industrial development
Government pays out £57 million to farmers affected by flooding
Canada confirms new case of Dermo disease in oysters
Bulgaria, Romania demand protective measures against Ukrainian honey imports
Malaysia invests $2.55m in 2025 to boost onion production and reduce imports
 

LEADERSHIP

Study: Missing a deadline has a bigger impact than you might think

Employers prefer younger job candidates for AI roles although experienced workers perform same or better
Study finds workers misjudge wage markets
Some organizations may need to expand their hierarchical structures earlier than others
Study finds there's right way and wrong way to deliver negative feedback in workplace
Allyship is critical and its needs appreciation
 

CRIME

Commission fines Pierre Cardin and its licensee Ahlers €5.7 million for restricting cross-border sales of clothing

BHP, Vale agree to pay $30B damages for Brazil dam disaster
Commission fines České dráhy and Österreichische Bundesbahnen €48.7 million over collusion to exclude common compe
SEC charges Keurig with making inaccurate statements regarding recyclability of K-Cup beverage pod
SEC charges John Deere with FCPA violations for subsidiary’s role in Thai bribery scheme
AG Bonta secures $3.9 million settlement with cryptocurrency company Robinhood
 

Magazine

TRAVEL

Radisson Hotel Group debuts in the heart of Tunisia’s capital city, Tunis

Morocco’s first Radisson branded hotel opens in Casablanca
Buna channels, an unreal and beautiful part of Bosnia and Herzegovina
JW Marriott unveils Mindful Haven with opening of JW Marriott Hotel Nairobi
Sotheby's Sports Week returns with fantastic artifacts
Red Roof properties open in Michigan
 

SEA, LAND, AIR

Citroën C3 Aircross, the most affordable compact SUV with 7 seats

2025 Chevrolet Equinox stands apart with fresh looks and capability
Hill Helicopters HX50, luxury in the sky
Opel Movano becomes fully equipped camper van
Porsche Panamera, new hybrid variants
Dodge Charger, 670 horsepower of electric
 

DESIGN

Cold night, hot fire pit, cool entertainment

Embellish your home with PVC panels
You'll have to hurry if you want one of 20 new Louis Vuitton watches
Luxury duvet looks good, fells good and keeps you healthy
Vacheron Constantin, watches for life and more
Schüller kitchens, where functionality marries design
 

GADGETS

MESA/Boogie Celebrates 40-year partnership with John Petrucci

reMarkable 2, monochrome tablet for your thoughts and your eyes
OnePlus Ace 3V, first with Snapdragon 7 Plus Gen 3
ASUS Zenfone 11 Ultra, flagship with a reason
Samsung Galaxy S24 is photography powerhouse
Casette tapes are making a big comeback, and so are portable players
 

HEALTH

Human cases of anthrax reported in western Mongolia

One more barrier to developing vaccine for HIV removed
Rwanda begins world's first clinical trial for treatment of Marburg virus disease
Rwanda restricts gatherings amid Marburg virus outbreak, to begin trials of vaccine
Teksas Attorney General reaches settlement in first-of-its-kind healthcare generative AI investigation
Potentially deadly fungal disease spreading in California
 

MEANTIME

World-first carbon-14 diamond battery made

Einstein Telescope step closer
Exoplanet-hunting telescope to begin search for another Earth in 2026
India to build first phase of its own space station by 2028
Roscosmos chief approves schedule of creating Russian orbital station through 2033
Potentially habitable 'exo-Venus' with Earth-like temperature discovered