Russian Cybercriminal Arrested for LockBit and Hive Ransomware Operations

Russian Cybercriminal Linked to Ransomware Operations Arrested

November 30, 2024 – Mohit Kumar

In a significant breakthrough in the fight against cybercrime, Russian authorities have arrested Mikhail Pavlovich Matveev, a wanted fugitive linked to devastating ransomware attacks conducted through the notorious LockBit and Hive cybercrime syndicates. His capture has been confirmed by news reports from RIA Novosti, highlighting his role in developing malicious software that encrypts victims’ files, demanding hefty ransoms for their release.

According to the Russian Ministry of Internal Affairs, Matveev faces serious charges under Part 1 of Article 273 of the Criminal Code, which addresses the creation and distribution of harmful computer programs. Law enforcement has reportedly gathered substantial evidence against him, and his case has now been forwarded to the Central District Court in Kaliningrad.

Matveev has been on the radar of U.S. authorities since May 2023, when he was indicted for orchestrating ransomware attacks on "thousands of victims" worldwide. Known online by aliases such as "Wazawaka" and "m1x," he openly discussed his criminal exploits, claiming local authorities turned a blind eye as long as he remained loyal to the Russian state.

His arrest comes with a complicated backdrop; he has been publicly linked to numerous ransomware groups, including Conti and the now-disbanded Babuk group, suggesting extensive involvement in the global cybercrime network. Furthermore, the U.S. Treasury Department had placed him under sanctions, accompanied by a $10 million reward for information leading to his capture.

The rise in cybercrime has triggered increased scrutiny from law enforcement, and Matveev’s arrest is a testament to the ongoing battle against digital threats. This represents a notable moment for cybersecurity, following the sentencing of several REvil ransomware affiliates in Russia just weeks prior.