A person has appeared in federal court docket in Austin, Texas, after being extradited to the USA to face costs associated to his alleged position as a key developer of the infamous RedLine malware.
Prosecutors have charged Armenian nationwide Hambardzum Minasyan with conspiring with others to develop and run RedLine, described by the US Division of Justice as “one of the crucial prevalent infostealing malware variants on the earth.”
RedLine can steal all kinds of knowledge from affected pc methods, together with account particulars and passwords saved in browsers, cookies, and fee card info, in addition to particulars concerning the PCs it has compromised.
The RedLine malware, which has been deployed towards methods in additional than 150 international locations, has been marketed and bought to cybercriminals through subscription on the darkish internet. It has been generally used to reap information from firms, and is claimed to have been utilized by hackers backed by overseas governments to focus on US essential infrastructure.
Researchers have claimed previously that a big proportion of stolen credentials bought on the foremost darkish internet markets have been obtained by way of use of RedLine.
RedLine continues to be in use by cybercriminals, regardless of the near-fatal blow of “Operation Magnus” – the seizure of infrastructure by worldwide legislation enforcement in October 2024.
That operation additionally noticed costs filed towards Russian nationwide Maxim Rudometov, who’s alleged to be one other developer and administrator of RedLine, and stays at giant.
Final 12 months, the US Division of State supplied a reward of as much as US $10 million for details about the hackers believed to be behind RedLine malware assaults.
Minasyan is charged by prosecutors with conspiring to commit entry gadget fraud, conspiracy to violate the Laptop Fraud and Abuse Act, and conspiracy to commit cash laundering. The fees carry a mixed potential sentence of as much as 30 years in jail.
Particularly, US prosecutors declare that Minasyan registered two digital personal servers and two web domains, created repositories on a web based file-sharing web site to distribute RedLine to cybercriminal associates, and registered a cryptocurrency account in November 2021 to obtain consumer funds.
He additionally allegedly supplied buyer help to the hackers utilizing the malware.
As a part of the “Operation Magnus” seizure of RedLine infrastructure in late 2024, investigators recovered a database containing the small print of hundreds of RedLine shoppers. This has helped construct intelligence about different cybercriminals, and the arrest of Minasyan – virtually 18 months later – seems to be a direct outcome.
Because the authorized case towards Minasyan proceeds, authorities are persevering with to induce companies and people to harden their cybersecurity.
The “Operation Magnus” portal stays energetic at “operation-magnus.com, offering assets for potential victims to examine if their credentials had been harvested by the RedLine malware.
