Press Releases

Symantec Research Provides Key Evidence for International Cybercriminal Takedown

Three men arrested in Romania and extradited to the U.S. for $35 million USD fraud operation known as “Bayrob”

MOUNTAIN VIEW, Calif.–December 16, 2016–Symantec Corp. (NASDAQ: SYMC), the global leader in cyber security, today revealed the findings of a decade-long research campaign that helped unearth an international cybercriminal gang dubbed “Bayrob.” Symantec’s wealth of intelligence led to a successful FBI sting operation and the capture of three criminals in Romania. The group is responsible for stealing up to $35 million USD from victims through auto auction scams, credit card fraud and computer intrusion.

Through its research, Symantec discovered multiple versions of Bayrob malware, collected helpful intelligence data, and witnessed Bayrob as it morphed from online fraud to a 300,000+ botnet for cryptocurrency mining.  Over time, Symantec’s research team gained deep technical insight into Bayrob’s operations and its malicious activities, such as its recruitment of money mules.

“The Symantec Security Response team responsible for gathering the intelligence that assisted the FBI in this operation has an unparalleled track record when it comes to detecting cyber criminals and their stealthy methods,”  said Mike Fey, president and chief operating officer at Symantec. “We expect our success record will continue to grow now that we’ve combined Symantec’s global threat intelligence with Blue Coat. By unifying our threat telemetry we’re seeing 500,000 additional detections every day to help us get ahead of attacks and defend our customers.”

Since 2007, Symantec gathered insight of infection vectors, malicious programs and exploitation methods, as well as intelligence about the gang’s victims. These investigations and countermeasures assisted the FBI and authorities in Romania in building their case to arrest three of Bayrob’s key actors and extradite them to the U.S.

For more information about Symantec’s research campaign that discovered and tracked Bayrob, visit the Security Response blog.

About Symantec

Symantec Corporation (NASDAQ: SYMC), the world’s leading cyber security company, helps organizations, governments and people secure their most important data wherever it lives. Organizations across the world look to Symantec for strategic, integrated solutions to defend against sophisticated attacks across endpoints, cloud and infrastructure. Likewise, a global community of more than 50 million people and families rely on Symantec’s Norton suite of products for protection at home and across all of their devices. Symantec operates one of the world’s largest civilian cyber intelligence networks, allowing it to see and protect against the most advanced threats. For additional information, please visit or connect with us on FacebookTwitter, and LinkedIn.