According to SPF, Thai officials from the Criminal Investigation Department’s ( CID ) cybercrime command collaborated closely with Thailand’s Central Investigation Bureau ( CIB ) to share investigation findings relating to the suspected threat actor, who is also alleged to be responsible for a wave of data breach cases in Thailand.
The identity of the man was established based on the prospects uncovered, it added.
Following the man’s arrest, assets valued at over 10 million baht ( US$ 295, 000 ) were seized, including laptops, mobile phones, luxury vehicles and branded bags.
International teamwork is essential in the cyberspace because scammers do not value territories, according to SPF’s head of hacking control associate commissioner of police Paul Tay.
The Royal Thai Police are commended for their great assistance in eradicating this legal system and making our cyber safer, and The SPF is committed to working carefully with our local partners.
Investigations are ongoing, SPF said.
THE Attacker
A securities trading company in Thailand was the first to fall victim to a data breach under the name ALTDOS in late 2020, according to a joint advisory from the Cyber Security Agency of Singapore ( CSA ), Personal Data Protection Commission ( PDPC ), and SPF.
ALTDOS targets organizations for monetary gain, along with those from Singapore and Bangladesh as victims.
In August 2021, real estate agency OrangeTee &, Tie received an email from ALTDOS, demanding a payment of 10 Bitcoin for the health and non-disclosure of the data. Additionally, the ransom demand contained picture of five directories that were purportedly taken.
After discovering a number of errors that led to the compromise of more than 250, 000 customers ‘ and employees ‘ personal data, the organization was then fined S$ 37,000 by PDPC.
Authorities noted in another shared advice that GHOSTR was founded in August 2023 and concentrated on organizations in Southeast Asia. It allegedly extorted, demanded a payment, and sold its victims ‘ sensitive information.