Ukrainian national Denys Iarmak, who was allegedly a member of the FIN7 hacking group, is poised to enter a guilty plea for his involvement in fraudulent activity that resulted in the theft of over $1 billion around the world, CyberScoop reports.
Iarmak, who has been charged for aggravated identity theft, intentional protected computer damage and wire fraud, plans to change his non-guilty plea at a May 2020 hearing, according to a notification from his lawyers to a Washington state federal court. A plea deal has also been agreed upon by the lawyers but it remains unclear on which charges Iarmak intends to plead guilty to.
The imminent plea change from Iarmak comes after his alleged associates Fedir Hladyr and Andrii Kolpakov were sentenced to 10 years and seven years imprisonment, respectively. Hladyr was convicted of managing the hacking group's instant messaging service used for real-time communication, while Kolpakov was found guilty of supervising hackers.
Malicious posts detailing instructions for downloading cracked software on torrent trackers and forums enable deployment of SteelFox and acquisition of administrator access, which is then leveraged to establish a WinRing0.sys driver susceptible to privilege escalation via the CVE-2020-14979 and CVE-2021-41285 flaws, according to an analysis from Kaspersky.
Malicious emails purporting to be invoices that contain ZIP attachments have been delivered to facilitate the execution of a WebDAV-retrieved DLL that loads the updated Strela Stealer variant.
Pro-Russian hacktivist operations Killnet and Passion have leveraged Dstat.cc to promote their DDoS attack capabilities, with the latter touting its abilities to launch level 4 and level 7 intrusions, according to Germany's Federal Crime Police Office, or BKA.