Spanish authorities, in collaboration with international agencies, have arrested a suspected hacker accused of orchestrating over 40 cyberattacks targeting critical public and private entities.
The arrest, made in Calpe, Alicante, is the result of a combined operation between Spain’s National Police and the Civil Guard.
The suspect is believed to have infiltrated the computer systems of high-profile organizations, including NATO, the U.S. Army, the Ministry of Defense, and Spanish universities.
Sophisticated Cybercrime Network
The suspect utilized advanced techniques to evade detection, including anonymous messaging applications and encrypted browsing tools.
Authorities revealed that the hacker frequently changed pseudonyms on dark web forums to claim responsibility for his attacks while avoiding identification.
These forums were used to sell or leak stolen data, including sensitive employee and client information, from breached databases.
During the raid at the suspect’s residence, investigators seized multiple pieces of computer equipment and over 50 cryptocurrency accounts containing various digital assets.
This discovery underscores the hacker’s extensive knowledge of blockchain technology and his ability to launder illicit gains through cryptocurrencies.
The detainee carried out multiple attacks on the IT services of national and international companies and entities, including public services and government agencies.
He also claimed responsibility for the attacks on dark web forums under different pseudonyms to avoid being identified and linked to criminal acts.
The hacker had defaced their website and posted stolen information online. Subsequent investigations linked the suspect to numerous cyberattacks throughout 2024, targeting:
- The National Mint and Stamp Factory
- The Ministry of Education
- Spanish universities
- NATO and U.S. Army databases
- The Generalitat Valenciana
- The United Nations
- The International Civil Aviation Organization (ICAO)
The most recent attack in December 2024 targeted databases belonging to Spain’s Civil Guard and Ministry of Defense. This prompted an intensified investigation by the Central Operational Unit of the Civil Guard.
The hacker faces charges including unauthorized access to IT systems, data breaches, computer damage, money laundering, and disclosure of secrets.
Under Spanish law, these offenses carry a maximum sentence of 20 years in prison. Legal proceedings are underway at the Court of Instruction in Denia.
This case highlights the growing sophistication of cybercriminals and their ability to exploit vulnerabilities in critical systems. It also underscores the importance of international cooperation in combating cybercrime.
As authorities continue to analyze seized materials, further criminal acts may be uncovered.
PCI DSS 4.0 & Supply Chain Attack Prevention – Free Webinar