In a rash of dawn raids, police in the United Kingdom nabbed 19 people suspected of stealing more than $9 million from online bank accounts, according to reports.
The suspects — 15 men and 4 women ranging in ages 23 to 47 — are believed to
be part of an East European gang that allegedly used the ubiquitous ZeuS malware to infect victim computers and steal login credentials to more than 600 bank accounts. Money was then siphoned from the accounts and transferred to drop accounts owned by so-called money mules, who allowed the thieves to use their bank accounts to launder the funds. The thieves averaged about $3 million pounds a month over a three-month period.
Despite the rich takings, the alleged ringleader lived in a dingy third-floor walk-up in Essex, according to the Daily Mail, which published photos of some of the suspects as they were arrested. The 20-something suspect and his wife allegedly ran the operation from a laptop in their living room, using a pad and pencil to track the siphoned loot.
Investigators from Scotland Yard’s e-Crime Unit say the amount of money the thieves stole could increase as the investigation continues and could rise as high as $31 million.
The ZeuS rootkit is do-it-yourself malware sold online that allows any would-be criminal to amass their own army of infected computers. ZeuS’s primary aim is to steal financial information, such as bank credentials.
Photo: Map showing worldwide infections of one ZeuS variant. Courtesy of Prevx.