NetWalker Ransomware Operator Sentenced For Hacking Hundreds Of Organizations


A Romanian man, Daniel Christian Hulea, 30, was sentenced to 20 years in prison for his role in the NetWalker ransomware attacks, a sophisticated cybercrime operation that targeted hundreds of organizations worldwide.

The U.S. Department of Justice announced the sentencing, which also included the forfeiture of $21.5 million in illicit proceeds and restitution payments totaling nearly $15 million.

Hulea, a resident of Jucu de Mijloc, Cluj, Romania, pleaded guilty in June to charges of computer fraud conspiracy and wire fraud conspiracy.

According to court records, Hulea admitted to deploying the NetWalker ransomware to extort ransom payments from victims across various sectors, including healthcare, education, law enforcement, and government agencies.

Notably, the attacks intensified during the COVID-19 pandemic, exploiting the global crisis to target healthcare providers.

Investigate Real-World Malicious Links, Malware & Phishing Attacks With ANY.RUN – Try for Free

NetWalker ransomware operates as a ransomware-as-a-service (RaaS) model, enabling affiliates like Hulea to execute attacks while sharing profits with the developers.

The malware encrypts victims’ data and demands payment in cryptocurrency for decryption keys. Hulea admitted to receiving approximately 1,595 Bitcoin—valued at $21.5 million at the time—from ransom payments.

The investigation revealed that Hulea used his criminal proceeds to finance luxury investments, including an Indonesian limited liability company and a high-end resort property under construction in Bali. These assets were among those forfeited as part of his sentencing.

Hulea’s arrest on July 11, 2023, was a collaborative effort between Romanian law enforcement and U.S. authorities under an extradition treaty between the two countries.

Following his extradition to Florida, he faced prosecution by the FBI’s Tampa Field Office and federal prosecutors from the Middle District of Florida.

Principal Deputy Assistant Attorney General Nicole M. Argentieri emphasized the significance of this case in combating ransomware threats: “This sentencing demonstrates our commitment to holding cybercriminals accountable for exploiting global crises and targeting critical infrastructure.”

NetWalker ransomware gained notoriety for its aggressive tactics during the pandemic. It frequently infiltrated networks through phishing campaigns and exploited vulnerabilities in VPNs and remote desktop protocols.

Once inside a network, it encrypted files and exfiltrated sensitive data as leverage for ransom demands.

The healthcare sector was particularly hard hit by NetWalker attacks during COVID-19. For instance, hospitals and emergency services were specifically targeted when their operations were most vulnerable.

The FBI has urged organizations to bolster cybersecurity defenses against ransomware by implementing measures such as regular data backups, software patching, and multi-factor authentication.

Authorities also discourage paying ransoms as it fuels further criminal activity. This sentencing marks a significant victory in international efforts to dismantle ransomware operations and hold perpetrators accountable for their crimes.

2024 MITRE ATT&CK Evaluation Results for SMEs & MSPs -> Download Free Guide



Source link