A notorious hacker group known as Ragnar Locker, responsible for cyberattacks on high-profile companies like ADATA and Capcom, has been apprehended by an international police force spanning 11 countries, as reported by Europol on October 20. The group is most infamous for its involvement in the 2020 Capcom breach, where they exposed sensitive employee data, including names, emails, and passport details, affecting around 390,000 individuals.
Furthermore, this multi-country sting operation took place over several days in various locations, culminating in the arrest of the group’s key member in Paris and searches at their locations in Czechia. Additionally, five other suspects connected to Ragnar Locker were interviewed in Spain and Latvia.
In a significant achievement, the international police force not only apprehended key figures but also dismantled Ragnar Locker’s ransomware and the website used for leaking stolen data.
The group’s ransomware, which shares its name, was used in various cyberattacks against organizations like the Portuguese national carrier and an Israeli hospital, often exploiting vulnerabilities in Microsoft Windows devices, including the use of services like Remote Desktop Protocol for unauthorized access.
This operation sends a powerful message to ransomware operators that they cannot act without consequences. While Europol acknowledged improvements in prevention and security measures, they stressed the need for continued vigilance, as cybercriminals continue to innovate to find new victims.