Orcus RAT Author Charged In Malware Scheme


krebs-on-security

In July 2016, KrebsOnSecurity published a story identifying a Toronto man as the author of the Orcus RAT, a software product that’s been marketed on underground forums and used in countless malware attacks since its creation in 2015. This week, Canadian authorities criminally charged him with orchestrating an international malware scheme.

An advertisement for Orcus RAT.

The accused, 36-year-old John “Armada” Revesz, has maintained that Orcus is a legitimate “Remote Administration Tool” aimed at helping system administrators remotely manage their computers, and that he’s not responsible for how licensed customers use his product.

In my 2016 piece, however, several sources noted that Armada and his team were marketing it more like a Remote Access Trojan…

Read more…


Posted in:
About the Author

Brian Krebs

Brian became a world renowned security researcher while working for The Washington Post from 1995 to 2009 as the author of The Security Fix column. Since leaving The Washington Post in 2009 Brian has continued his research at Krebs on Security where he continues to investigate cyber criminal gangs, skimmers, software exploits, and the dark underbelly of the web .

Leave a Reply

Your email address will not be published. Required fields are marked *