A world coalition of legislation enforcement companies introduced Thursday that they took down a well-liked digital non-public community service utilized by cybercriminals and arrested its administrator.
The FBI said in an alert that First VPN was so common that “at the least” 25 ransomware gangs used the service to cover their malicious exercise. Cybercriminals additionally relied on the VPN to scan the web, run botnets, launch distributed denial-of-service assaults, and for operating scams. First VPN operated servers throughout 27 completely different nations, in line with the bureau.
Europol said in an announcement that, aside from providing nameless connections, First VPN provided cybercriminals nameless funds, hidden infrastructure, and different providers particularly marketed for felony hackers.
“First VPN had turn into deeply embedded within the cybercrime ecosystem, showing in nearly each main cybercrime investigation supported by Europol lately,” learn the announcement. “Criminals used it to hide their identities and infrastructure whereas finishing up ransomware assaults, large-scale fraud, knowledge theft, and different critical offences.”
The service marketed on recognized cybercrime boards, together with at the least two Russian-speaking marketplaces, promising criminals safety in opposition to being recognized.
“We’re for anonymity. We don’t retailer any logs that will enable us or third events to hyperlink an IP deal with in a particular time frame with a consumer of our service,” FirstVPN mentioned in a single put up that TechCrunch has seen. “The one knowledge we retailer is e-mail and username, however it’s inconceivable to hyperlink a consumer’s on-line exercise with a particular consumer of our service.”
Europol, nonetheless, mentioned that First VPN customers have been notified of the shutdown and “knowledgeable that they’ve been recognized.” Investigators mentioned they did this by acquiring the service’s consumer database and figuring out VPN connections, which “uncovered 1000’s of customers linked to the cybercrime ecosystem.”
The worldwide legislation enforcement company additionally mentioned First VPN’s administrator was arrested, dozens of servers “dismantled,” and its infrastructure was disrupted — all merchandise of an investigation launched in December 2021.
If you buy by hyperlinks in our articles, we may earn a small commission. This doesn’t have an effect on our editorial independence.
