Reveton ransom note

A Microsoft network engineer is facing federal charges in Florida for allegedly helping launder money obtained from victims of the Reveton ransomware.

The accused is Raymond Uadiale, 41, a naturalized US citizen of Nigerian descent, who currently works for Microsoft in Seattle since 2014, according to his LinkedIn page.

Florida investigators say that between October 2012 and March 2013, Uadiale worked with a UK citizen going online by the moniker K!NG. The latter would distribute and infect victims with the Reveton ransomware, while Uadiale would collect payments and send the money to K!NG, in the UK.

Uadiale accused of sending money from the US to the UK

The Reveton ransomware is one of the first screen-locking ransomware strains, and it appeared when Bitcoin was still in its infancy, and before it became the cryptocurrency of choice in all ransomware operations.

Instead, Reveton operators asked victims to buy GreenDot MoneyPak vouchers, take the code on the voucher and enter it in the Reveton screen locker.

According to court documents obtained by Bleeping Computer, K!NG would deposit victims' GreenDot MoneyPak payments into debit cards Uadiale acquired under the fake name of Mike Roland.

Uadiale allegedly laundered over $130,000

The indictment further stated that Uadiale would later convert these funds into the Liberty Reserve digital currency and send the proceeds to his UK partner, keeping 30% of the funds, part of his cut. Court documents claim Uadiale transferred more than $130,000 to his UK partner.

While investigators didn't say how they tracked down Uadiale, authorities from 18 countries seized and shut down Liberty Reserve servers in May 2013, and law enforcement is still sifting through the seized data, which they said contained details on almost $6 billion of money laundering operations.

If found guilty on all charges, Uadiale risks a maximum sentence of up to 20 years in prison, a fine of up to $500,000, and up to three years of supervised release.

Uadiale has been set free on a $100,000 bond. His alleged criminal activity predates his job at Microsoft.

Related Articles:

Windows 10 Ransomware Protection Bypassed Using DLL Injection

Microsoft Patches Windows Zero-Day Exploited in Cyber Attacks

Microsoft November 2018 Patch Tuesday Fixes 12 Critical Vulnerabilities

Microsoft October 2018 Patch Tuesday Fixes 12 Critical Vulnerabilities

The Intel Microcode Boot Loader Protects Older CPUs From Spectre