FBI-Wanted Hacker Behind Global Ransomware Attacks Arrested in Russia

****SUMMARY****

• FBI-Wanted Hacker Arrested: Russian authorities have reportedly detained Mikhail Pavlovich Matveev, known by aliases like Wazawaka and Boriselcin.

• Cybercrime Connections: Matveev is linked to major ransomware groups such as Hive, LockBit, and Babuk, responsible for high-profile attacks on critical infrastructure and government agencies.

• Significant Ransom Demand: The Department of Justice alleges Matveev extorted at least $75 million in ransom payments from global victims.

• Notable Attacks: He is suspected of involvement in the 2021 Babuk attack on Washington D.C.’s police and a 2022 Hive attack on a New Jersey healthcare NGO.

• Potential Global Impact: His arrest could disrupt several ransomware groups, but extradition to the U.S. remains uncertain due to geopolitical tensions.

Mikhail Pavlovich Matveev, known by his online aliases Wazawaka, Uhodiransomwar, m1x, and Boriselcin, is believed to have been arrested in Russia, which could be a potential turning point in the fight against cybercrime since the hacker is wanted by the FBI (Federal Bureau of Investigation).

Matveev is a big deal in the dark web underworld. He’s been linked to some of the most damaging ransomware attacks in recent years that have targeted critical infrastructure, government agencies, and businesses worldwide. His alleged involvement with groups like Hive, LockBit, and Babuk has made him a powerful cybersecurity threat worldwide.

Reports suggest that he was involved in a lockout attack on the Washington D.C. Metropolitan Police Department from Babuk in April 2021 and a ransomware attack from Hive, targeting a healthcare NGO in New Jersey in 2022.

It is worth noting that in early 2023, the Hive ransomware gang was disrupted by the FBI, Europol, German, and Dutch agencies, seizing their dark web website, The Hive Leak site, preventing the gang from attacking and extorting victims

Also, in 2022, LockBit infected the computer systems of 1,400 victims, including a Holiday Inn hotel in Turkey, likely involving Matveev. The Department of Justice (DoJ) suspects he extracted at least $75 million in ransom payments.

Investigators allege that in January, the accused developed specialized malicious software to encrypt files and data without user consent, intending to use it to encrypt data of commercial organizations and receive ransoms for decryption.

The US government has been on the hunt for Matveev, offering a $10 million reward for information leading to his arrest. The DoJ had previously filed criminal charges against him, accusing him of launching attacks on US law enforcement and healthcare organizations.

While Russian authorities have not officially confirmed the arrest, Russian state news agency PИA Hoвocти reported that the Kaliningrad Interior Ministry and Russian prosecutors have sent a case against “a programmer accused of creating a malicious program to court,” with an anonymous source confirming Matveev as the detained programmer. The charges against him include creating malicious software designed to encrypt files and data, with the intent of extorting ransom payments from victims.

The arrest of Matveev, if confirmed, could have significant implications. It could potentially disrupt the activities of several ransomware groups and deter future attacks. However, the question of whether the US will be able to extradite him remains uncertain, given the complex geopolitical tensions between the two countries.

1. Russia ”neutralizes” REvil ransomware gang, arrests 14
2. Infraud Organization Group Members Arrested by Russian
3. 50 hackers Who Stole $25M Arrested by Russian Authorities
4. Russian Authorities Arrest Nine for Stealing $17M from Banks
5. FBI Kills Kelihos Botnet Amid Russian Hacker’s Arrest in Spain