The Russian hacker Stanislav Vitaliyevich Lisov pleads guilty to bank fraud after running a botnet that spread ‘NeverQuest’ malware for three years.
The Russian hacker Stanislav Vitaliyevich Lisov, aka “Black,” “Blackf,” is accused of using the NeverQuest banking Trojan to steal login information from victims. The man has pled guilty to one count of conspiracy to commit computer hacking in Manhattan Federal Court, he faces a sentence of up to five years in prison.
“Geoffrey S. Berman, the United States Attorney for the Southern District of New York, and William F. Sweeney Jr., Assistant Director-in-Charge of the New York Office of the Federal Bureau of Investigation (“FBI”), announced that STANISLAV VITALIYEVICH LISOV, a/k/a “Black,” a/k/a “
Lisov was arrested in January 2017 by the Spanish police, he was arrested at the Barcelona airport by the Guardia Civil. The Russian hacker was suspected of being the author of the Neverquest malware, aka
The Neverquest was used by cyber criminals to steal login credentials from banking customers, it leverages on injection mechanisms to provide users fake forms into legitimate banking websites. The banking trojan is able to record keystrokes, to steal passwords stored on the PC, and take screenshots and video from the victims’ machine.
The Neverquest malware is able to log in to the victim’s online banking account and perform fraudulent transactions.
The arrest is the result of the collaboration between the Spanish law enforcement and the FBI.
Lisov operated the infrastructure behind the NeverQuest malware between June 2012 and January 2015, the managed a network of servers containing lists of millions of stolen login credentials.
“LISOV also personally harvested login information from unwitting victims of the NeverQuest malware, including usernames, passwords, and security questions and answers. In addition, LISOV discussed trafficking in stolen login information and personally identifiable information of victims.” added the DoJ.
“LISOV, 33, a citizen of Russia, pled guilty to one count of conspiracy to commit computer hacking, which carries a maximum sentence of five years in prison. The statutory maximum sentence is prescribed by Congress and is provided here for informational purposes only, as any sentencing of the defendant will be determined by the judge.
(SecurityAffairs – NeverQuest malware
For more, read here.
The post Author of NeverQuest botnet pleads guilty to bank fraud appeared first on Security Affairs.