Cybercrime investigators from Europe and North America have dismantled a major Russian-led malware operation, supported by police in the UK, Canada, Denmark, and several other countries. They issued international arrest warrants for 20 suspects, with 16 individuals already charged by European investigators in Russia. Key figures include Rustam Rafailevich Gallyamov and Alexander Stefanov, linked to Qakbot and Danabot malware operations.
The Bundeskriminalamt (BKA) has launched a public appeal to find 18 suspects linked to Qakbot and Trickbot malware. Russian citizen Vitalynikolaevich Kovalev is among the most wanted, believed to be behind the Conti ransomware group. He, alongside others, has allegedly attacked hundreds of companies globally, amassing large ransom payments.
Investigators noted that Russian cybercriminals have infected over 300,000 computers worldwide, targeting military and governmental organizations. The BKA has sufficient evidence to pursue 20 of the 37 implicated individuals, and operation details remain sealed for 16 defendants involved in Danabot malware.
German authorities highlighted the increasing focus on cybercriminal activity in Germany, particularly targeting hospitals during the COVID pandemic. Although extraditing suspects is deemed unlikely, their identification remains crucial for ongoing investigations. The operations illustrate effective strategies against cybercrime, even within anonymous networks.
Source link
