$24M in crypto, 30 Bitcoins, and $700K seized as FBI takes down Russian hacker behind 700,000 computer ransomware army in Operation Endgame
Live Events
What is Gallyamov accused of?
Operation Endgame
(You can now subscribe to our
(You can now subscribe to our Economic Times WhatsApp channel
For thousands of people around the world, the nightmare began the same way: a frozen screen, a blinking message, and a demand for money. Doctors, small business owners, factory workers, and even school staff found their computers suddenly hijacked.The US Department of Justice has indicted Rustam Rafailevich Gallyamov , a 48-year-old Russian national from Moscow, for leading a global cybercriminal enterprise responsible for the notorious Qakbot malware . Alongside the charges, the Justice Department announced it had seized over $24 million in cryptocurrency linked to Gallyamov's cybercrime empire. These funds are now targeted to be returned to the victims who suffered from these attacks.Victims ranged from small dental offices in Los Angeles to technology firms in Nebraska, manufacturing companies in Wisconsin, and even real estate businesses in Canada.This indictment was unsealed on Thursday, May 22, 2025, and marks a crucial moment in America's ongoing battle against ransomware attacks that have plagued organizations worldwide.Matthew R. Galeotti, Head of the Justice Department's Criminal Division, emphasized the significance of this action: "Today's announcement of the Justice Department's latest actions to counter the Qakbot malware scheme sends a clear message to the cybercrime community. We are determined to hold cybercriminals accountable and will use every legal tool at our disposal to identify you, charge you, forfeit your ill-gotten gains, and disrupt your criminal activity."Gallyamov is accused of developing and deploying Qakbot since 2008, a sophisticated malware that infected over 700,000 computers globally. The malware facilitated ransomware attacks by granting access to co-conspirators who deployed various ransomware strains, including Conti, REvil, Black Basta, and Dopplepaymer.Despite a multinational operation targeting him in August 2023 that disrupted the Qakbot botnet, Gallyamov allegedly continued his cybercriminal activities.'Mr. Gallyamov's bot network was crippled by the talented men and women of the FBI and our international partners in 2023, but he brazenly continued to deploy alternative methods to make his malware available to criminal cyber gangs conducting ransomware attacks against innocent victims globally,' said Assistant Director in Charge Akil Davis of the FBI's Los Angeles Field Office.He and his associates shifted tactics, employing "spam bomb" attacks to deceive employees into granting network access, leading to further ransomware deployments as recently as January 2025.As a result, the FBI under its 'Operation Endgame' seized more than 30 bitcoins and $700,000 in USDT tokens from Gallyamov under a seizure warrant executed on April 25, the Department of Justice confirmed in a statement.The Justice Department also filed a civil forfeiture complaint to seize over $24 million in cryptocurrency linked to Gallyamov's illicit activities. This was done not only to prosecute cybercriminals but also to recover assets to compensate victims.The indictment is part of Operation Endgame, a coordinated international effort involving law enforcement agencies from the United States, France, Germany, the Netherlands, Denmark, the United Kingdom, and Canada.This operation has dismantled key infrastructures of several malware strains, including Qakbot, DanaBot, Trickbot, and others, by taking down approximately 300 servers and neutralizing 650 domains worldwide.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Time of India
3 hours ago
- Time of India
Elon Musk's bruised, black eye sparks viral online theories: Here's the official story
— BehizyTweets (@BehizyTweets) Live Events Drug use allegations cast shadow Farewell from Washington, not from power (You can now subscribe to our (You can now subscribe to our Economic Times WhatsApp channel Elon Musk turned up at the White House with a black eye on Friday. The Tesla and SpaceX boss said it wasn't from politics, or a fall, or even France. 'We were horsing around, and I said, 'Go ahead, punch me in the face.' And he did,' Musk told reporters, chuckling. He was referring to his son, X, who is Trump, seated next to him in the Oval Office, jumped in: 'That was X that did that? …X could do it. If you knew X.'Musk explained that he didn't feel much pain at the time, but the bruise showed up later. When first asked about the injury, he deflected with a joke: 'I wasn't anywhere near France,' referencing the viral rumour involving French President Emmanuel Macron's while the exchange was light-hearted, the context was far from the same day, The New York Times published a detailed report alleging that Musk had been using ketamine in amounts that raised serious concerns. Musk had previously acknowledged using the drug under prescription. The timing of the article—just before the joint White House event—amplified the press event, Musk was asked directly about the article. He didn't answer the question head-on. Instead, he took aim at the media outlet.'New York Times, is that the same publication that got a Pulitzer Prize for false reporting on Russiagate? Is it the same organization? I think it is!' Musk said. He continued, 'I think the judge just ruled against New York Times for their lies about the Russiagate hoax and that they might have to give back that Pulitzer Prize.'The remarks drew attention but didn't provide clarity. On social media, speculation surged. One user on X (formerly Twitter) wrote: 'Yoo did Elon Musk get straight up punched in the face? That's a left hook black eye if I've ever seen one. Might explain his delayed talk?'The press conference was meant to mark the end of Musk's stint as a 'special government employee.' For about four months, he had led the Department of Government Efficiency (DOGE), a role created to cut federal praised him: 'Elon's service to America has been without comparison in modern history.' He handed Musk a golden key bearing the White House seal as a parting Musk promised $1 trillion in savings, that goal remained out of reach. Still, the role gave him sway in reshaping several federal agencies. His influence also extended to key appointments: allies of Musk now lead NASA and the Air Force, both crucial partners for as the bond between Trump and Musk cooled in recent months, the president made a show of unity. 'One of the greatest business leaders and innovators the world has ever produced,' Trump called said his departure was due to the legal limit of 130 days for such temporary roles. But signs of a growing rift with Trump had already emerged. He recently voiced displeasure over the administration's tariffs and criticised its domestic policy bill, saying it would worsen the Musk says he plans to refocus on his private ventures. 'I hope to continue to be a friend and adviser to the president,' he time in Washington may be over, but the headlines, the controversy, and the bruises—both literal and political—seem far from finished.
Time of India
8 hours ago
- Time of India
Trump's Life at RISK? Ex-FBI Boss' ‘8647' Post Linked to KILL PLOT, Kash Patel Speaks
/ May 31, 2025, 01:15AM IST The FBI says assassination threats against Donald Trump have exploded after ex-FBI Director James Comey posted (and deleted) a cryptic photo reading '8647.' In this explosive report, we break down how that post is now being interpreted as a coded call to '86' the 47th president. FBI Director Kash Patel reveals chilling details of agents being pulled from terror cases to chase down Trump threats — including two failed attempts this year. Watch now.
Time of India
10 hours ago
- Time of India
Pak role in kidnapping of 3 Indians in Iran? India probes
Live Events (You can now subscribe to our (You can now subscribe to our Economic Times WhatsApp channel India is probing Pakistan's role in the kidnapping of three Indians in Iran as the families of the abductees received ransom calls from Pakistani phone families of the three Indians, who recently went missing in Iran, have received ransom calls from Pakistani phone numbers, raising suspicion of Pakistani spy agency ISI's hand in the incident, ET has Indians - from Punjab's Sangrur, Hoshiarpur and SBS Nagar - went missing in Iran and efforts are on to trace them "urgently", according to sources. They have been identified as Hushanpreet Singh (Sangrur), Jaspal Singh (SBS Nagar) and Amritpal Singh (Hoshiarpur). They all went missing on May 1 after landing in Tehran. Sources alleged that ISI will try to prove that these three Indians were involved in "espionage" in Pakistan."Family members of three Indian citizens have informed the Embassy of India that their relatives are missing after having travelled to Iran. The embassy has strongly taken up this matter with the Iranian authorities and requested that the missing Indians should be urgently traced and their safety should be ensured," the Indian embassy in Iran recently said in a embassy said that it is "keeping the family members regularly updated" of the efforts being made by agent in Punjab had promised the three men that they would be sent to Australia via the Dubai-Iran route. The government is also probing if the agent had any links with the Pakistan government, it has been learnt. The agent from Hoshiarpur who sent the men to Iran is reportedly missing."The case concerning the disappearance of three Indian nationals is being followed up by the Consular Affairs Department of the Ministry of Foreign Affairs of the Islamic Republic of Iran in coordination with the relevant judicial authorities. The Embassy of the Republic of India in Tehran is also being kept informed of the proceedings within the judicial system of the Islamic Republic of Iran through coordination with the Consular Affairs Department," the Iranian embassy in New Delhi said in a post on X on also urged Indians to apply caution while travelling to other countries and not fall prey to illegal agencies. This is the second case of Indians who went missing in Iran over the past one year.
