A woman types on her laptop in Miami in a Monday, Dec. 12, 2016, photo illustration. An investigation into a scourge of NetWalker ransomware attacks has led to the arrest of a Canadian man, the U.S. Department of Justice said on Wednesday. According to an indictment, police in Florida charged Sebastien Vachon-Desjardins of Gatineau, Que., with illegally obtaining more than $27.6 million. THE CANADIAN PRESS/AP/Wilfredo Lee

A woman types on her laptop in Miami in a Monday, Dec. 12, 2016, photo illustration. An investigation into a scourge of NetWalker ransomware attacks has led to the arrest of a Canadian man, the U.S. Department of Justice said on Wednesday. According to an indictment, police in Florida charged Sebastien Vachon-Desjardins of Gatineau, Que., with illegally obtaining more than $27.6 million. THE CANADIAN PRESS/AP/Wilfredo Lee

Canadian man charged in U.S. with NetWalker ransomware attacks

The ransomware, like similar malware, often infiltrates computer networks via phishing emails

An investigation into a scourge of NetWalker ransomware attacks has led to the arrest of a Canadian man, the U.S. Department of Justice said on Wednesday.

According to an indictment, police in Florida charged Sebastien Vachon-Desjardins of Gatineau, Que., with illegally obtaining more than $27.6 million.

The accused is alleged to be part of a shadowy group of cyber criminals who have attacked several targets in Canada, including the College of Nurses of Ontario, a Canadian Tire store in B.C., and the Northwest Territories Power Corporation.

“Ransomware victims should know that coming forward to law enforcement as soon as possible after an attack can lead to significant results like those achieved in today’s multi-faceted operation,” Nicholas McQuaid, an acting assistant attorney general with the Justice Department, said in a statement.

U.S. authorities said they had seized about US$455,000 in cryptocurrency from ransom payments in three separate attacks. They also said authorities in Bulgaria had disabled a “dark web” resource used to communicate with NetWalker ransomware victims.

NetWalker operates as a so-called ransomware-as-a-service model, featuring “developers” and “affiliates,” who split the proceeds of any ransom paid. Experts say NetWalker attacks really took off last March as the criminals exploited fears of COVID-19 and people working remotely.

The ransomware, like similar malware, often infiltrates computer networks via phishing emails. Such messages masquerade as genuine, prompting users to provide log-in information or inadvertently download malware.

Earlier ransomware attacks focused on encrypting a target’s files — putting them and even backups out of reach. Increasingly, attackers also threaten to publish sensitive data stolen during the time spent inside an exploited network before encryption and detection.

Once a victim’s computer network is compromised and the data encrypted and downloaded, the NetWalker criminals demand money to return system access. If victims refuse, they might never regain their data or, more frequently now, the information is made public.

NetWalker ransomware has impacted numerous victims, including companies, municipalities, hospitals, law enforcement, emergency services, school districts, colleges and universities. Recent attacks have specifically targeted the health-care sector during the COVID-19 pandemic, taking advantage of the global crisis to extort victims.

Brett Callow, a Vancouver Island-based threat analyst with cybersecurity firm, Emsisoft, said the group had made millions. In one case last year, they extorted $1.4 million from a California university.

Police urged any victims to contact law enforcement right away.

“This case illustrates the FBI’s capabilities and global partnerships in tracking ransomware attackers, unmasking them, and holding them accountable,” Special Agent Michael McPherson, with the FBI’s field office in Tampa, Fla., said.

Colin Perkel, The Canadian Press

hackers

Just Posted

Alberta is now below 3,000 active cases of COVID-19, as the province reported 2,639 Wednesday. (NIAID-RML via AP)
Red Deer below 100 active COVID-19 cases for first time since March

69.7 per cent of Albertans 12 and over have at least one dose of the COVID-19 vaccine

Premier Jason Kenney says the provincial government is doing everything it can to encourage Albertans to get vaccinated. (Photo by Chris Schwarz/Government of Alberta)
Travel prizes added to Alberta’s vaccine lottery

More than 40 travel rewards available for those who are fully vaccinated

Three calves were recently shot dead in Lacombe County near Mirror. (Photo from Facebook)
Calves shot and left for dead in central Alberta

Bashaw RCMP investigating three shootings

(Advocate file photo)
Red Deer down to 102 active COVID-19 cases

Central zone has 332 cases with 26 in hospital and five in ICU

People line up to get their COVID-19 vaccine at a vaccination centre, Thursday, June 10, 2021 in Montreal. THE CANADIAN PRESS/Ryan Remiorz
Vaccines, low COVID case counts increase Father’s Day hope, but risk is still there

Expert says people will have to do their own risk calculus before popping in on Papa

The Calgary skyline is seen on Friday, Sept. 15, 2017. THE CANADIAN PRESS/Jeff McIntosh
2 deaths from COVID-19 Delta variant in Alberta, 1 patient was fully immunized

Kerry Williamson with Alberta Health Services says the patients likely acquired the virus in the hospital

A vial containing the Moderna COVID-19 vaccine is shown at a vaccination site in Marcq en Baroeul, outside Lille, northern France, Saturday, March 20, 2021. THE CANADIAN PRESS/AP/Michel Spingler
mRNA vaccines ‘preferred’ for all Canadians, including as 2nd dose after AstraZeneca: NACI

New recommendations prioritizes Pfizer, Moderna in almost all cases

House Majority Whip James Clyburn, D-S.C., center left, reaches over to Rep. Maxine Waters, D-Calif., joined by Speaker of the House Nancy Pelosi, D-Calif., center, and members of the Congressional Black Caucus as they celebrate the Juneteenth National Independence Day Act that creates a new federal holiday to commemorate June 19, 1865, when Union soldiers brought the news of freedom to enslaved Black people after the Civil War, at the Capitol in Washington, Thursday, June 17, 2021. It’s the first new federal holiday since Martin Luther King Jr. Day was created in 1983. (AP Photo/J. Scott Applewhite)
Biden to sign bill making Juneteenth a federal holiday

New American stat marks the nation’s end of slavery

A screenshot of the First Peoples Cultural Councils First Peoples’ Map. (First Peoples Cultural Council)
Online resource blends B.C.-Alberta’s Indigenous languages, art and culture

Advisor says initiative supports the urgent need to preserve Indigenous languages

A plane is silhouetted as it takes off from Vancouver International Airport in Richmond, B.C., May 13, 2019. THE CANADIAN PRESS/Jonathan Hayward
Report calls for airlines to refund passengers for flights halted due to COVID-19

Conclusion: federal help should be on the condition airlines immediately refund Canadian travellers

Green party Leader Annamie Paul speaks during a news conference on Parliament Hill in Ottawa on Tuesday, June 15, 2021. Paul has survived another day of party strife after a planned ouster shifted course, leaving her with a tenuous grip on power ahead of a likely federal election this year. THE CANADIAN PRESS/Justin Tang
Green Leader Annamie Paul blasts ‘racist,’ ‘sexist’ party execs who sought ouster

Fallout has continued, with two of the federal council’s members resigning

Russian President Vladimir Putin, left, and U.S President Joe Biden shake hands during their meeting at the ‘Villa la Grange’ in Geneva, Switzerland in Geneva, Switzerland, Wednesday, June 16, 2021. (AP Photo/Alexander Zemlianichenko, Pool)
Biden says meeting with Putin not a ‘kumbaya moment’

But U.S. president asserted Russian leader is interested in improved relations, averting a Cold War

Most Read