Sunday, July 15, 2018
  • Robert M. Lee and Jeff Hass’ Little Bobby Comics – ‘CFP Process’
  • Circle City Con 5.0 2018, Kyle Ehmke’s ‘Applying Thermodynamic Principles to Threat Intelligence’
  • A primer: How to stay safe on Amazon’s Prime Day Sale
  • Interesting Email Scam I Recieved
  • Sextortion and leaked passwords

Security Boulevard

The home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
  • Community
    • Security Bloggers Network
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chats
  • CISO Conversations
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
Endpoint Malware SBN News Security Bloggers Network 

Home » Cybersecurity » Endpoint » Federal Jury Convicts Operator of “Scan4You” Counter Antivirus Service

Federal Jury Convicts Operator of “Scan4You” Counter Antivirus Service

by David Bisson on May 17, 2018

A federal jury convicted one of the digital criminals responsible for operating the notorious “Scan4You” counter antivirus (CAV) service.

On 16 May, the Department of Justice released a press release announcing a Virginia federal jury’s conviction of Ruslans Bondars, 37, on one count of conspiracy to commit wire fraud, one count of conspiracy to violate the Computer Fraud and Abuse Act and one count of intrusion into a computer system with the intent to cause damage. This conviction followed one year after Latvian authorities arrested Bondars along with Russian citizen Jurijs Martisevs and extradited them both to the United States for trial.

Together, Bondars and Martisevs operated Scan4You. It’s a type of CAV service that allows computer criminals to check their newest malware against antivirus software. Bad actors could therefore use Scan4You to redesign their malware so that they can evade detection.

A screenshot of Scan4You.net (Source: KrebsonSecurity)

Scan4You said it didn’t share any of the information fed to it by criminals with antivirus software providers like Trend Micro. But that wasn’t the case. As Trend Micro explained in a blog post:

While Scan4You made sure feedback loops to Trend Micro’s servers about file scans were turned off, Scan4You also performed reputation checks of URLs, IP addresses, and domains. The way Scan4You set this up meant that all reputation scans against Trend Micro’s web reputation service were visible to us for years. Since 2012, we have collected a wealth of information on Scan4You’s operations, and in particular, information on the many reputation scans that they performed each day.

Trend Micro subsequently published a report detailing all the information it learned from Scan4You, which appeared to cease operations following the arrests of Bondars and Martisevs.

35-year-old Moscow resident Martisevs pleaded guilty back in March in a Virginia federal courtroom, (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/latest-security-news/federal-jury-convicts-operator-of-scan4you-counter-antivirus-service/

May 17, 2018May 17, 2018 David Bisson antivirus, criminal, Latest Security News, Malware
  • ← Hackers Using Hard-to-Block DDoS Amplification Technique
  • Hackers siphon hundreds of millions of pesos out of Mexican banks through shadow transactions →

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Dark Market Shop Sells RDP Access to Airport System for $10
Mitigating Risks of Shadow IT with CASBs
How to Protect Tomorrow’s Critical Infrastructure
CPU Speculative Execution Hits Again with 2 New Spectre Variants
Hide ‘N Seek IoT Botnet Updated with Database Infection Mechanisms
Security in Open Source Software Isn’t Automatic – but It Should Be
101 AWS Security Tips & Quotes, Part 4: Best AWS Security Practices
Hawkeye Keylogger – Reborn v8: An in-depth campaign analysis
Macy’s Customer Data Breach Exposes Credit Card Numbers, PII

Upcoming Webinars

Tue 17

The 4 Current Threats Enterprises Can’t Ignore

July 17 @ 11:00 am - 12:00 pm
Wed 18

Embrace DevSecOps and Enjoy a Significant Competitive Advantage!

July 18 @ 11:00 am - 12:00 pm
Tue 24

DevOps Security: Build-Time Identification of Security Issues — A case study with Jenkins, Docker, and AWS

July 24 @ 11:00 am - 12:00 pm
Thu 26

Draft and Develop: A Solution to the Cyber Security Skills Shortage

July 26 @ 11:00 am - 12:00 pm
Tue 31

Mastering Machine Learning for Security Professionals: A Discussion

July 31 @ 1:00 pm - 2:00 pm

More Webinars

Download Free eBook

Mastering Hybrid Cloud Security

CISO Conversations

CISO/Security Vendor Relationship Podcast

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Control, Defend and Extend Container Security
Cybersecurity DevOps Industry Spotlight Security Boulevard (Original) 

Control, Defend and Extend Container Security

July 10, 2018 Kirsten Newcomer | Jul 10 0
Is Vulnerability Management Now Out of Our Control?
Cybersecurity Industry Spotlight Network Security Security Boulevard (Original) 

Is Vulnerability Management Now Out of Our Control?

July 6, 2018 Chris Calvert | Jul 06 0
Security Risks Created by SaaS (They Might Not Be What You Expect)
Industry Spotlight Network Security Security Boulevard (Original) 

Security Risks Created by SaaS (They Might Not Be What You Expect)

July 5, 2018 Arlo Gilbert | Jul 05 0

Top Stories

CPU Speculative Execution Hits Again with 2 New Spectre Variants
Endpoint Featured News Security Boulevard (Original) Spotlight Vulnerabilities 

CPU Speculative Execution Hits Again with 2 New Spectre Variants

July 13, 2018 Lucian Constantin | 2 days ago 0
Dark Market Shop Sells RDP Access to Airport System for $10
Featured Identity & Access Malware News Security Boulevard (Original) Spotlight Threats & Breaches 

Dark Market Shop Sells RDP Access to Airport System for $10

July 12, 2018 Lucian Constantin | 3 days ago 0
SolarWinds Acquires Trusted Metrics
Analytics & Intelligence Cybersecurity Featured News Security Boulevard (Original) Spotlight Threat Intelligence 

SolarWinds Acquires Trusted Metrics

July 10, 2018 Michael Vizard | Jul 10 0

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2018 Mediaops Inc. All rights reserved.
Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.