1 min read

Europol Shuts Down Hackers’ Favorite VPN Service

Vlad CONSTANTINESCU

January 19, 2022

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Europol Shuts Down Hackers’ Favorite VPN Service

Europol earlier this week coordinated joint action to take down VPNLab.net, a VPN service frequently used to carry out cyberattacks anonymously.

The operation, on Jan. 17, involved simultaneous action from law enforcement agencies in 10 countries: the Netherlands, Germany, the Czech Republic, France, Ukraine, Latvia, Hungary, the UK, Canada and the US.

Authorities seized 15 VPNLab.net servers and took the service’s main website offline, rendering the platform inaccessible. They also notified more than 100 businesses that were potential cyberattack targets and are working with them to mitigate their exposure. Authorities didn’t disclose the names of the companies.

“Law enforcement took interest in the provider after multiple investigations uncovered criminals using the VPNLab.net service to facilitate illicit activities such as malware distribution,” according to a Europol press release.

Ukraine’s Cyber Police said that attackers used VPNLabs.net in more than 150 ransomware attacks and got roughly €60 million ($68.3 million) in ransom payments.

Threat actors frequently use VPN services to obfuscate critical data, such as their actual location and identity, and cloak their Internet activity by routing traffic through private, encrypted tunnels.

Compared to consumer-grade services, VPN solutions used in crime are generally slower due to the multitude of encryption layers and times they bounce connections.

VPNLab.net was a service established in 2008 that hackers often relied on to carry out cyberattacks. One of the most attractive features of this provider was double VPN, a feature that bounces the connection through two VPN servers in different countries instead of one.

The service was advertised on the dark web as relatively cheap, with an OpenVPN-based infrastructure and 2048-bit encryption. Reportedly, attackers used the service to set up infrastructures and communications in ransomware campaigns and deploy malware to the targeted systems without fear of detection.

tags


Author



Right now

Top posts

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

January 26, 2023

2 min read
Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

January 19, 2023

4 min read
Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Planet Ice hacked! 240,000 skating fans' details stolen Planet Ice hacked! 240,000 skating fans' details stolen
Graham CLULEY

January 31, 2023

2 min read
QNAP Rolls Out Urgent Patch to Fix SQL Injection Flaw in NAS Devices QNAP Rolls Out Urgent Patch to Fix SQL Injection Flaw in NAS Devices
Filip TRUȚĂ

January 31, 2023

1 min read
Code-Signing Certificates Stolen in GitHub Breach Code-Signing Certificates Stolen in GitHub Breach
Vlad CONSTANTINESCU

January 31, 2023

1 min read