FlagThis

Russian authorities have arrested and indicted Mikhail Pavlovich Matveev, also known as Wazawaka, a notorious ransomware affiliate. Matveev, who also used the aliases Uhodiransomwar, m1x, and Boriselcin, is charged with developing malware and involvement in several hacking groups. While the prosecutor's office initially withheld his identity, referring to him only as a "programmer," sources confirmed his identity as Matveev. This arrest is significant given Wazawaka's prolific malware development and connections to major ransomware operations.

The arrest follows the US government's indictment of Matveev in 2023, accompanied by a $10 million bounty for information leading to his capture. Matveev faces US sanctions and charges for his alleged role in numerous ransomware attacks targeting thousands of victims worldwide. His arrest in Russia adds complexity to US efforts to prosecute him, highlighting the challenges of international law enforcement cooperation in cybercrime cases.

This arrest underscores a potential shift in Russia's approach to domestic cybercriminals. Historically, Russia has been perceived as a safe haven for hackers targeting foreign entities. However, recent crackdowns, including the sentencing of REvil ransomware gang members, suggest a changing stance. While the exact reasons behind Matveev’s arrest remain unclear, it marks a notable development in the ongoing global fight against ransomware.

ImgSrc: www.bleepstatic

References :

• databreaches.net: Sergiu Gatlan reports: Russian law enforcement has arrested and indicted notorious ransomware affiliate Mikhail Pavlovich Matveev (also known as Wazawaka, Uhodiransomwar, m1x, and Boriselcin) for developing malware and his involvement in several hacking groups.
• www.bleepingcomputer.com: Russian law enforcement has arrested and indicted notorious ransomware affiliate Mikhail Pavlovich Matveev (also known as Wazawaka, Uhodiransomwar, m1x, and Boriselcin) for developing malware and his involvement in several hacking groups.
• malware.news: Russian law enforcement has arrested and indicted notorious ransomware affiliate Mikhail Pavlovich Matveev (also known as Wazawaka, Uhodiransomwar, m1x, and Boriselcin) for developing malware and his involvement in several hacking groups.
• infosec.exchange: Russian law enforcement has arrested and indicted notorious ransomware affiliate Mikhail Pavlovich Matveev (also known as Wazawaka, Uhodiransomwar, m1x, and Boriselcin) for developing malware and his involvement in several hacking groups.
• www.techmeme.com: Techmeme summarizes the news from BleepingComputer about Wazawaka's arrest.
• infosec.exchange: Infosec.exchange shares BleepingComputer's report about Wazawaka's arrest.
• securityaffairs.com: News about the arrest of Mikhail Pavlovich Matveev, aka Wazawaka, in Russia for his involvement in ransomware attacks.
• thehackernews.com: News article about the arrest of a wanted Russian cybercriminal linked to LockBit and Hive ransomware operations.
• www.techopedia.com: Russia has arrested Mikhail Matveev, alias Wazawaka, for creating malware and aiding ransomware groups while facing US sanctions and charges.
• securityaffairs.com: Russian authorities arrested ransomware affiliate Mikhail Matveev, aka Wazawaka, for developing malware and ties to hacking groups.
• bsky.app: Russia arrests cybercriminal Wazawaka for ties with ransomware gangs
• gbhackers.com: Russian authorities have arrested Mikhail Matveev, a notorious Russian hacker linked to multiple ransomware attacks worldwide.
• bsky.app: Russian citizen and notorious ransomware affiliate Mikhail Pavlovich Matveev (also known as Wazawaka, Uhodiransomwar, m1x, and Boriselcin) has been arrested and indicted in Russia for his involvement in several hacking groups.
• cyberinsider.com: Russian authorities have arrested Mikhail Pavlovich Matveev, a notorious ransomware affiliate better known by his aliases “Wazawaka,” “m1x,” “Boriselcin,” and “Uhodiransomwar.”
• Metacurity: Russian Authorities Bust Ransomware Developer Wazawaka
• Threats | CyberScoop: Notorious ransomware developer charged with computer crimes in Russia
• malware.news: Russian programmer Mikhail Pavlovich Matveev — who has been accused of being involved with the LockBit, Hive, and Babuk ransomware operations — has reportedly been apprehended and indicted by Russian authorities for developing data encrypting software that could be leveraged for ransomware extortion activities.
• bsky.app: A $10M bounty, thousands of victims, and ties to ransomware gangs like LockBit and Hive—Russia has reportedly arrested Mikhail Matveev, aka Wazawaka, a top FBI-wanted hacker.
• www.scworld.com: Russia arrests ransomware-linked hacker
• go.theregister.com: Russia arrests one of its own – a cybercrime suspect on FBI's most wanted list
• techcrunch.com: Russian government confirms rare criminal charges against ransomware hacker
• SecureWorld News: SecureWorld article detailing the charges against Mikhail Matveev for developing ransomware.
• techcrunch.com: Russian government confirms rare criminal charges against ransomware hacker

Classification:

• HashTags: #Ransomware #Cybercrime #Wazawaka
• Company: Microsoft
• Target: Various Organizations
• Attacker: Wazawaka
• Product: Microsoft 365
• Feature: MFA
• Malware: Rockstar 2FA
• Type: Ransomware
• Severity: Major