Suspected Armenian Extradited for Operating RedLine Malware Scheme Following Co-Conspirator Arrest
Published
Key Takeaways
- Extradition executed: An Armenian national was extradited to the U.S. to face federal cybercrime charges connected to RedLine malware.
- Malware infrastructure management: Federal prosecutors assert he administered RedLine infostealer infrastructure, enabling systematic data exfiltration operations and affiliate monetization frameworks.
- Multi-agency coordination: The FBI Austin Cyber Task Force executed coordinated international law enforcement operations to neutralize the threat actor ecosystem supporting this cybercriminal enterprise.
Alleged RedLine malware administrator Hambardzum Minasyan appeared in an Austin federal court on Tuesday after being extradited to the U.S. on three counts. He is accused of maintaining critical operational responsibilities in developing and administering the infostealer malware infrastructure, which has previously been used to conduct intrusions against major corporations.
Minasyan, an Armenian national, reportedly conspired with others to make a profit by developing and administering RedLine, according to court documents.
RedLine C2 Infrastructure Administration
The indictment alleges that Minasyan worked with co-conspirators to maintain digital infrastructure, command-and-control (C2) servers and administrative panels that supported RedLine infostealer distribution operations, conspired with each other and affiliates to steal data, and laundered proceeds through cryptocurrency exchanges and other means.
Documents suggest he registered two virtual private server instances and two domains hosting administrative consoles to facilitate extensive malware-as-a-service (MaaS) operations, enabling affiliates to execute targeted credential theft campaigns against major corporations.
Additionally, the defendant reportedly established a cryptocurrency wallet commencing in November 2021 to process illicit revenue streams and subscription-based payments from cybercriminal affiliate participants.
International Law Enforcement Operations
Minasyan faces serious federal cybercrime charges, including conspiracy to commit access device fraud, money laundering, and Computer Fraud and Abuse Act violations. Upon conviction, sentencing guidelines establish maximum penalties of 10 years' imprisonment for access device fraud and 20 years' imprisonment for additional statutory violations.
The FBI Austin Cyber Task Force directed this multi-jurisdictional investigation through coordination with the Department of Justice cybercrime units and international law enforcement partnerships.
The notorious Meta and RedLine infostealers were disrupted in 2024 thanks to a coordinated international operation dubbed Operation Magnus. Alleged co-conspirator Maxim Rudometov is accused of being a developer and administrator of the infostealer.
Related
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular