Feeds

Mariposa mastermind arrested in Slovenia

Cybercrime toolkit suspect cuffed

SANS - Survey on application security programs

Investigators have released more details on the arrest of a Slovenian hacker suspected of creating the code behind the infamous Mariposa botnet.

The 23-year-old suspect - known only by his hacker handle of Iserdo - was arrested in Maribor, Slovenia 10 days ago, five months after Spanish police arrested three suspects who alleged used the Mariposa code to create a 12 million botnet.

Iserdo was arrested alongside with two other suspects in Slovenia as part of a joint FBI-Slovenian investigation that has since focused on the 23-year-old.

The FBI, Spain's Guardia Civil and Slovenian police are continuing to co-operate in investigating the case, which may lead to further international arrests of hackers who used the Mariposa botnet to steal banking login credentials or to commit other forms of cybercrime. Mariposa botnet cybercrime kits were on sale in underground forums for between $500 and $1,300, with higher prices charged for more customised versions of the software.

Jeffrey Troy, deputy assistant director for the FBI's cyber division, described Iserdo's arrest as a major break in the ongoing investigation. "As opposed to arresting the guy who broke into your home, we've arrested the guy that gave him the crowbar, the map and the best houses in the neighbourhood," Troy told AP.

Iserdo, who faces unspecified charges, has been released on police bail pending further inquiries. The alleged VXer's website has been taken down, along with the command and control servers of the main Mariposa botnet, but Panda Security has a screenshot of the site and extracts from price lists in a blog post here. ®

High performance access to file storage

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Heartbleed exploit, inoculation, both released
File under 'this is going to hurt you more than it hurts me'
Arts and crafts store Michaels says 3 million credit cards exposed in breach
Meanwhile, Target investigators prepare for long process in nabbing hackers
prev story

Whitepapers

SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.