Alert: One of the most active Russian-speaking cybercrime actors in the world has been arrested and deported as a result of an international investigation led by the National Crime Agency (NCA).
The 38-year-old Maksim Silnikau, also known as Maksym Silnikov, used the internet names lansky, xxx, and J.P. Morgan. On August 9, 2024, he was arrested from Poland to the United States to stand trial on allegations of global computer hacking and wire fraud.
“J.P. Morgan and his associates are elite cyber criminals who practiced extreme operational and online security in an effort to avoid law enforcement detection,”
NCA said in a statement.
Since 2015, the NCA has been looking into the internet alias “J.P. Morgan” and his criminal network; the FBI and US Secret Service have also been conducting parallel investigations.
Investigators discovered that these people were behind the development and spread of well-known ransomware strains, such as Reveton and the most current Ransom Cartel, as well as exploit kits, such as Angler, that have stolen tens of millions of dollars from victims all over the world.
Initial versions of Reveton claimed to be police warnings that victims’ computers had been locked for unspecified copyright violations and demanded that a “fine” be paid within 48 hours under pain of legal action.
Reveton’s later versions used a more frightening approach, locking laptops on the grounds that they had been used to watch pictures of child abuse online.
Even worse, Reveton might identify the victim’s camera and show their picture next to the demand for money, scaring them into paying the “fine” out of fear of going to jail. With time, the Reveton assaults grew more complex and were the first virus to use the ransomware-as-a-service (RaaS) business model.
The software used by the thieves is believed to have extracted tens of millions of dollars from individuals all around the world.
At a flat in Estepona, southern Spain, in July 2023, 38-year-old Maksim Silnikau, also known as Maksym Silnikov, was taken into custody by Spanish police with assistance from law enforcement officials from the UK and the US.
Additionally, the network of J.P. Morgan developed and distributed several exploit kits, such as the well-known Angler Exploit Kit, which was employed in “malvertising” campaigns.
Although these campaigns took many different shapes, they usually involved cybercriminals buying up advertising space on trustworthy websites and posting advertisements that contained a malicious exploit kit.
Investigators from the NCA discovered that Zain Qaiser, a British national, was collaborating with J.P. Morgan to run Angler malvertising operations and split the earnings.
This action is the culmination of complex and long running international investigations into J.P. Morgan and his criminal network, who have caused immeasurable harm to individuals and businesses around the world.
NCA Deputy Director Paul Foster, Head of the National Cyber Crime Unit, said
However, the NCA is dedicated to locating the top-level organised criminals who lead the criminal organisations doing the most damage to the United Kingdom.
“This arrest underscores a long-term investigation by the U.S. Secret Service, in coordination with foreign, domestic and private partners, of cybercrime organisations that allegedly distributed the notorious Angler Exploit Kit, conducted malvertising and operated the Ransom Cartel ransomware organisation”.
United States Secret Service Assistant Director of Investigations Brian Lambert said
Cybercriminals should be aware that, despite their efforts to hide their illegal activities behind the anonymity of the internet, they will ultimately be caught and held responsible for their acts thanks to the hard work of international law enforcement professionals.
“Silnikau and his co-conspirators allegedly used malware and various online scams to target millions of unsuspecting internet users in the United States and around the world.
“They hid behind online aliases and engaged in complex, far-reaching cyber fraud schemes to compromise victim devices and steal sensitive personal information. The FBI will continue to work with partners to aggressively impose costs on cybercriminals and hold them accountable for their actions.”
FBI Deputy Director Paul Abbate said
