US indicts Russian accused of ransomware attacks
(Reuters) -The U.S. Department of Justice on Thursday unsealed charges against a Russian national accused of leading the development and deployment of malicious software that infected thousands of computers over more than a decade.
Rustam Rafailevich Gallyamov, 48, of Moscow, led a group of cybercriminals who developed and deployed Qakbot, a name for software that could be used to infect computers with additional malware, such as ransomware, as well as to conscript the computer into a botnet - or group of compromised computers and devices controlled remotely - to be used for additional malicious purposes, according to a DOJ statement.
Prosecutors also made public a complaint seeking the forfeiture of more than $24 million in cryptocurrency and traditional funds seized over the course of the investigation, the DOJ said.
The charges of conspiracy and conspiracy to commit wire fraud come a year and a half after an international law enforcement operation disrupted Qakbot infrastructure. Gallyamov continued cybercriminal activities after the disruption, prosecutors said, as recently as January 2025.
Gallyamov did not immediately respond to a request for comment. The DOJ statement did not indicate his whereabouts.
Also on Thursday, federal prosecutors in Los Angeles unsealed charges against 16 people accused of developing and deploying the DanaBot malware, which was used to infect more than 300,000 computers worldwide and cause at least $50 million in damage, according to a DOJ statement.
The DanaBot charges are part of Operation Endgame, an international law enforcement and private-sector campaign targeting cybercriminal operators and infrastructure around the world.
DanaBot emerged in 2018 as malware to steal banking credentials and other information, but evolved to enable wider information stealing and establish access for follow-on activity, according to researchers with Lumen's Black Lotus Labs, who participated in Operation Endgame.
DanaBot remained 'highly operational through 2025,' the researchers wrote in a blog post, with roughly 1,000 daily victims across more than 40 countries.
(Reporting by AJ Vicens in Detroit; Additional reporting by Anton Zverev in London; Editing by Matthew Lewis)
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
The Star
11 hours ago
- The Star
US deportees arrive in South Sudan, airport sources say
FILE PHOTO: U.S. flag and Judge gavel are seen in this illustration taken, August 6, 2024. REUTERS/Dado Ruvic/Illustration/File Photo NAIROBI (Reuters) -An aircraft carrying U.S. deportees arrived in South Sudan on Saturday, two officials working at Juba airport said, after eightmigrants lost their last-ditch effort to halt their deportation by the Trump administration. An airport staffer speaking on condition of anonymity told Reuters he had seen a document showing that the aircraft "arrived this morning at 6:00 am."(0400 GMT) An immigration official also said the deportees had arrived in the country but shared no further details, referring all questions to the National Security Service intelligence agency. Earlier, a South Sudan government source said U.S. officials had been at the airport awaiting the migrants' arrival. (Reporting by Nairobi bureau; additional reporting by Ryan Jones in Toronto and Andrea Shalal in Bedminster, New Jersey; editing by Diane Craft)
The Star
13 hours ago
- The Star
Colombian police capture suspect in attack on senator Uribe, sources say
FILE PHOTO: A picture of Colombian Senator Miguel Uribe Turbay of the opposition Democratic Center party is seen at a tribute at a place where he was shot during a campaign event, in Bogota, Colombia, June 12, 2025. REUTERS/Luisa Gonzalez/File Photo
The Star
16 hours ago
- The Star
Bosnia's prosecutor lifts arrest warrant against separatist Serb leader
FILE PHOTO: Bosnian Serb leader Milorad Dodik arrives at the Kremlin to attend a festive concert, held on the occasion of the 80th anniversary of the victory over Nazi Germany in World War Two, in Moscow, Russia, May 8, 2025. Alexander Kryazhev/Host agency RIA Novosti/Handout via REUTERS/File Photo BELGRADE (Reuters) -Bosnia's prosecutor's office said it had lifted an arrest warrant against separatist Serb leader Milorad Dodik after he surprisingly appeared at a hearing investigating allegations against him of violating the constitutional order. After months of ignoring summons to attend the prosecutor's office to answer questions, Dodik appeared at a hearing on Friday, authorities said in a statement issued late on Friday. Dodik is a long-time advocate of the secession of the autonomous Serb Republic, one of two regions in Bosnia linked by a weak central government, and the crisis precipitated by his separatist push represents one of the biggest threats to peace in the Balkans since the 1990s conflicts that followed Yugoslavia's collapse. In February, he was sentenced to one year in jail and banned from holding office for six years for defying the decisions of an international peace envoy, the ultimate interpreter of Bosnia's constitution under the Dayton peace accords that ended the 1992-95 war in which 100,000 people were killed. In March, Bosnian state prosecutors ordered Dodik's arrest for ignoring a court summons. Following Friday's hearing, Bosnia's prosecutor's office and the court issued a statement saying that the arrest warrant for him was withdrawn, though he will still have to report periodically to state authorities. (Reporting by Ivana Sekularac; Editing by Alex Richardson)
