If you ever find yourself wondering if you need to be as safe on the Internet as we're always telling you to be, consider the jaw-dropping amount of money that hackers stole with last year's Dridex malware. To remind you, hackers infected computers and took them over, stealing logins, passwords and siphoning money out of bank accounts.
These hackers, who called themselves Evil Corp, used a Macro virus hidden within a Microsoft Word or Excel file. Whoever opened those attachments unknowingly let the Evil Corp hackers steal their information, like bank account logins and passwords.
They used a Trojan virus, which isn't duplicated and spread from computer to computer. Instead, Evil Corp targeted specific victims, and they were quite smart about it. Instead of focusing on individuals, Evil Corp's victims were mostly the finance departments of small businesses. "Smart" because they ultimately stole more than $30 million.
In fact, the FBI says the Evil Corp hackers also tried to steal $1 million from a Pennsylvania public school district. They did manage to transfer $3.5 million from Penneco Oil, also in Pennsylvania. The Evil Corp hackers found their victims from a database containing 385 million email addresses.
Now, almost a year after we started telling you about the Dridex hack, there is good news to report: Evil Corp's leader has been arrested. The Dridex hacks were serious enough to get the UK's National Crime Agency and the United State's FBI involved.
They arrested a 30-year-old Moldavian man, Andrey Ghinkul. Other members of Evil Corp have not yet been named. There's more good news. In addition to the arrest, the FBI says it's seized the botnet used by Evil Corp.