A woman types on her laptop in Miami in a Monday, Dec. 12, 2016, photo illustration. An investigation into a scourge of NetWalker ransomware attacks has led to the arrest of a Canadian man, the U.S. Department of Justice said on Wednesday. According to an indictment, police in Florida charged Sebastien Vachon-Desjardins of Gatineau, Que., with illegally obtaining more than $27.6 million. THE CANADIAN PRESS/AP/Wilfredo Lee

A woman types on her laptop in Miami in a Monday, Dec. 12, 2016, photo illustration. An investigation into a scourge of NetWalker ransomware attacks has led to the arrest of a Canadian man, the U.S. Department of Justice said on Wednesday. According to an indictment, police in Florida charged Sebastien Vachon-Desjardins of Gatineau, Que., with illegally obtaining more than $27.6 million. THE CANADIAN PRESS/AP/Wilfredo Lee

Canadian man charged in U.S. with NetWalker ransomware attacks

The ransomware, like similar malware, often infiltrates computer networks via phishing emails

An investigation into a scourge of NetWalker ransomware attacks has led to the arrest of a Canadian man, the U.S. Department of Justice said on Wednesday.

According to an indictment, police in Florida charged Sebastien Vachon-Desjardins of Gatineau, Que., with illegally obtaining more than $27.6 million.

The accused is alleged to be part of a shadowy group of cyber criminals who have attacked several targets in Canada, including the College of Nurses of Ontario, a Canadian Tire store in B.C., and the Northwest Territories Power Corporation.

“Ransomware victims should know that coming forward to law enforcement as soon as possible after an attack can lead to significant results like those achieved in today’s multi-faceted operation,” Nicholas McQuaid, an acting assistant attorney general with the Justice Department, said in a statement.

U.S. authorities said they had seized about US$455,000 in cryptocurrency from ransom payments in three separate attacks. They also said authorities in Bulgaria had disabled a “dark web” resource used to communicate with NetWalker ransomware victims.

NetWalker operates as a so-called ransomware-as-a-service model, featuring “developers” and “affiliates,” who split the proceeds of any ransom paid. Experts say NetWalker attacks really took off last March as the criminals exploited fears of COVID-19 and people working remotely.

The ransomware, like similar malware, often infiltrates computer networks via phishing emails. Such messages masquerade as genuine, prompting users to provide log-in information or inadvertently download malware.

Earlier ransomware attacks focused on encrypting a target’s files — putting them and even backups out of reach. Increasingly, attackers also threaten to publish sensitive data stolen during the time spent inside an exploited network before encryption and detection.

Once a victim’s computer network is compromised and the data encrypted and downloaded, the NetWalker criminals demand money to return system access. If victims refuse, they might never regain their data or, more frequently now, the information is made public.

NetWalker ransomware has impacted numerous victims, including companies, municipalities, hospitals, law enforcement, emergency services, school districts, colleges and universities. Recent attacks have specifically targeted the health-care sector during the COVID-19 pandemic, taking advantage of the global crisis to extort victims.

Brett Callow, a Vancouver Island-based threat analyst with cybersecurity firm, Emsisoft, said the group had made millions. In one case last year, they extorted $1.4 million from a California university.

Police urged any victims to contact law enforcement right away.

“This case illustrates the FBI’s capabilities and global partnerships in tracking ransomware attackers, unmasking them, and holding them accountable,” Special Agent Michael McPherson, with the FBI’s field office in Tampa, Fla., said.

Colin Perkel, The Canadian Press

hackers

Just Posted

Greater father involvement in the home leads to improved childhood development and increased marital satisfaction, says expert. (Black Press Media file photo)
University of Victoria researcher finds lack of father involvement a drag on gender equality

Working women still taking on most child and household duties in Canada

New COVID-19 cases on Vancouver Island by local health area for the week of June 6-12. (B.C. Centre for Disease Control image)
New COVID-19 cases up on Island, but health officials say trends going right way

There were 22 new COVID-19 cases in Greater Victoria last week after just four the week before

Emergency health services treated a person after they were blocking traffic at the intersection of Fort and Douglas Streets on June 17. (Evert Lindquist/ News Staff)
Victoria intersection traffic returns to normal after protester blocked roadway

A person in a motorized wheelchair was blocking the intersection at Fort and Douglas Streets

Eric White’s roadside farm stand in Metchosin sits stocked with produce. (Photo courtesy of Eric White)
Fledgling Metchosin farmer frustrated by thefts from stand

Eric White said every dollar made at the roadside helps sustain his farm

Saanich police took a suspect into custody after a store employee on Cedar Hill Cross Road was assaulted Wednesday afternoon. (Black Press Media file photo)
Employee assaulted at Saanich store after asking suspected shoplifters to leave

June 16 incident saw worker taken to hospital with non-life-threatening injuries

People line up to get their COVID-19 vaccine at a vaccination centre, Thursday, June 10, 2021 in Montreal. THE CANADIAN PRESS/Ryan Remiorz
Vaccines, low COVID case counts increase Father’s Day hope, but risk is still there

Expert says people will have to do their own risk calculus before popping in on Papa

(Black Press Media file photo)
POLL: When was the last time you visited the mainland?

The films are again lighting the screens at local theatres, the wine… Continue reading

Anyone with information on any of these individuals is asked to call 1-800-222-TIPS (8477) or visit the website victoriacrimestoppers.ca for more information.
Greater Victoria Crime Stoppers wanted list for the week of June 15

Greater Victoria Crime Stoppers is seeking the public’s help in locating the… Continue reading

The Co-op gas station at Whiskey Creek is burning after a camper van exploded while refueling just before 4 p.m. on Thursday, June 17, 2021. (FACEBOOK PHOTO)
Exploding camper van torches Highway 4 gas station between Qualicum Beach and Port Alberni

Highway traffic blocked after Whiskey Creek gas station erupts into flames

Helen Austin performing with Trent Freeman at the 2018 Vancouver Island MusicFest. Austin is one of the many performers listed for the 2021 event.
Vancouver Island MusicFest goes virtual for 2021

Black Press to stream 25 hours of programming July 9-11

FILE – A science class at L.A. Matheson Secondary in Surrey, B.C. on March 12, 2021. (Lauren Collins/Surrey Now Leader)
Teachers’ union wants more COVID transmission data as B.C. prepares for back-to-school

BCTF says that details will be important as province works on plan for September

Provincial health officer Dr. Bonnie Henry outlines B.C.’s COVID-19 restart plan, May 25, 2021, including larger gatherings and a possible easing of mandatory masks on July 1. (B.C. government photo)
B.C. records 120 new COVID-19 cases, second vaccines accelerating

Lower Pfizer deliveries for early July, Moderna shipments up

A Heffley Creek peacock caught not one - but two - lifts on a logging truck this month. (Photo submitted)
Heffley Creek-area peacock hops logging trucks in search of love

Peacock hitched two lifts in the past month

The Calgary skyline is seen on Friday, Sept. 15, 2017. THE CANADIAN PRESS/Jeff McIntosh
2 deaths from COVID-19 Delta variant in Alberta, 1 patient was fully immunized

Kerry Williamson with Alberta Health Services says the patients likely acquired the virus in the hospital

Most Read