No rest for German police

Posted by   Virus Bulletin on   May 13, 2004

Arrest of suspected Sasser author, arrest of suspected Phatbot author and questioning of five more suspects - all within the space of 7 days.

The German authorities have been busy this month, having made the arrests of suspected Sasser and Netsky author Sven Jaschan and of the suspected Phatbot author last week, and this week questioning five more individuals in connection with Sasser and Netsky.

With having caused disarray in Taiwan's state-run national post office, downing computers of 25 departments of the South African government and causing major operational problems for the UK coastguard listing just a small number of its enormously disruptive effects, Sasser has been estimated to have cost $500 million so far.

Following the arrest of 18-year old German Sven Jaschan in connection with creating and distributing Sasser, German police have questioned a further five in connection with distributing Sasser and Netsky. But, while two of the five admitted that they had been given source code for Netsky, and one admitted helping to circulate Netsky, no further arrests have been made.

Jaschan, who confessed to having created Netsky.A after his arrest, has been released pending charges, but some reports suggest that he may escape formal punishment because he was arrested only a day after his 18th birthday - and since the alleged crime of computer sabotage was apparently committed before this, some he may be tried as a juvenile.

If Jaschan is convicted, his informants could be on the receiving end of the first payout of Microsoft's $5 million 'anti-virus reward program'. The individuals who provided the tip-off to Microsoft have been informed that the company will consider providing a reward of up to $250,000 if their information leads to the (arrest and) conviction of the Sasser perpetrator.

Posted on 13 May 2004 by Virus Bulletin

 Tags

twitter.png
fb.png
linkedin.png
hackernews.png
reddit.png

 

Latest posts:

VBSpam tests to be executed under the AMTSO framework

VB is excited to announce that, starting from the Q3 test, all VBSpam tests of email security products will be executed under the AMTSO framework.

In memoriam: Prof. Ross Anderson

We were very sorry to learn of the passing of Professor Ross Anderson a few days ago.

In memoriam: Dr Alan Solomon

We were very sorry to learn of the passing of industry pioneer Dr Alan Solomon earlier this week.

New paper: Nexus Android banking botnet – compromising C&C panels and dissecting mobile AppInjects

In a new paper, researchers Aditya K Sood and Rohit Bansal provide details of a security vulnerability in the Nexus Android botnet C&C panel that was exploited in order to gather threat intelligence, and present a model of mobile AppInjects.

New paper: Collector-stealer: a Russian origin credential and information extractor

In a new paper, F5 researchers Aditya K Sood and Rohit Chaturvedi present a 360 analysis of Collector-stealer, a Russian-origin credential and information extractor.

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.