A Latvian resident was sentenced to 14 years in prison last week for his e-crime service, ‘Scan4you’.
Advertised as a legitimate ‘penetration testing’ service, Scan4you was in fact a counter antivirus operation. The service enabled cyber criminals to test their malware against antivirus software, especially those used by the US retail sector, but also global government and financial institutions.
Operating from 2009 to 2016, Scan4you is believed to have assisted with the theft of over $15 billion. The service was reportedly used by the cyber criminals behind the Citadel malware, responsible for infecting over 11 million computers and attributed with $500 million in fraud losses.
Law enforcement worldwide are tackling the enablers of cyber crime who sell their services to aid online criminals. This sentence reflects the seriousness with which courts are tackling such offences.
The NCSC operates CHECK, a penetration testing assurance scheme. Pen testers certified through the CHECK scheme are measured against the NCSC’s highest standards, ensuring that customers receive a high quality service. More information on CHECK.