Site icon Sophos News

Blackshades webcam voyeur spared jail over stolen webcam images

"shutterstock_14808862

A hacker who used the BlackShades Remote Access Trojan (RAT) to spy on his unsuspecting victims has avoided jail time.

Stefan Rigo, 33, from Leeds, UK, had his collar felt by the National Crime Agency in November, 2014, after being identified by an international effort targeting users of remote access software.

During his trial at Leeds Magistrates Court, it was alleged Rigo used his ex-girlfriend’s details to buy BlackShades, a RAT which can be used to take control of an unsuspecting victim’s computer for a number of nefarious purposes, including the theft of personal and banking information, the downloading of more malware, or to turn an attached webcam on or off and view footage.

Forensic examination of Rigo’s computer equipment showed it was the latter purpose to which he had put the malware, using hijacked cameras to collect images of people engaged in sexual activity in front of their computers or over Skype.

According to a statement from the National Crime Agency (NCA), he also confessed to using BlackShades to control others’ webcams and monitor their desktops, enabling him to obtain passwords and email content.

As his trial progressed, Rigo further admitted to monitoring unsuspecting victims for up to 12 hours per day so it’s hardly surprising he was found guilty of both a voyeurism charge and an offence under the Computer Misuse Act.

More surprising, to me at least, is the leniency of the sentencing which saw Rigo avoid prison time. He was instead handed a 40 week suspended jail sentence and ordered to sign the sex offenders register for the next seven years. Additionally, he will have to complete 200 hours unpaid work and turn in all of his computer equipment.

Speaking for the NCA, senior investigating officer Angela McKenna said:

People using malicious tools like Blackshades can massively violate the privacy of their victims, and use compromised computers to facilitate further crime.

Users of these tools are continuing to find that despite having no physical contact or interaction with their victims, they can still be identified, tracked down and brought to justice by the NCA and its partners.

Surreptitious webcam viewing is nothing new of course – we’ve previously written about Jared James Abrahams who attempted to blackmail Miss Teen USA Cassidy Wolf over video footage he stole from her hijacked webcam, as well as Chelsea Clark and her boyfriend whose Netflix movie night provided entertainment for an unseen third party.

Despite that, and the fact that the BlackShades RAT can be quite inexpensive, not to mention easily used, there is no reason to despair.

You can do a lot to defend yourself and your family against this type of invasive malware with the following tips:

Image of webcam courtesy of Shutterstock.com

Exit mobile version