Skip to content
Tech News
← Back to articles

Suspected RedLine infostealer malware admin extradited to US

2026-03-26 | original
read original get Cybersecurity USB Data Block → more articles
Why This Matters

The extradition of Hambardzum Minasyan highlights ongoing international efforts to combat sophisticated malware operations like RedLine, which pose significant threats to both corporations and consumers by stealing sensitive data and financial information. This case underscores the importance of cybersecurity vigilance and law enforcement collaboration in dismantling cybercrime infrastructure. It also signals increased accountability for cybercriminals operating global malware-as-a-service platforms.

Key Takeaways

An Armenian suspect was extradited to the United States to face criminal charges for allegedly helping manage RedLine, one of the most prolific infostealer malware operations in recent years.

Hambardzum Minasyan was arrested on Monday, March 23, and appeared in federal court in Austin on Tuesday, when U.S. prosecutors accused him of registering virtual private servers that were part of RedLine's infrastructure and two web domains used during RedLine attacks.

He also allegedly registered a cryptocurrency account in November 2021 that the RedLine cybercrime gang used to receive affiliate payments and created online file-sharing repositories used to distribute the malware to affiliates.

"Hambardzum Minasyan allegedly conspired with others to enrich himself by developing and administering RedLine, one of the most prevalent infostealing malware variants in the world, which has previously been used to conduct intrusions against major corporations," the Justice Department said on Wednesday. "When executed, RedLine would steal data, including access devices, from victims' computers."

With the help of other accomplices, Minasyan managed the operation's digital infrastructure, including administrative panels and command-and-control (C2) servers that affiliates used to deploy the info stealer to victims' compromised devices.

The conspirators also allegedly provided support to actual and potential RedLine affiliates, answering their questions and requests, and conspired to steal financial information from infected systems, laundering the illegally obtained funds through cryptocurrency exchanges and other methods.

Minasyan is now facing access device fraud, Computer Fraud and Abuse Act violation, money laundering conspiracy charges, and a maximum of 30 years in prison if convicted.

In October 2024, the Dutch National Police seized the network infrastructure for the Redline malware-as-a-service (MaaS) platform, working with international partners in a joint action named "Operation Magnus."

The United States also charged Russian national Maxim Alexandrovich Rudometov, the suspected developer and administrator of the RedLine operation, who could face up to 35 years in prison if convicted on counts of access device fraud, conspiracy to commit computer intrusion, and money laundering.

More recently, in June 2025, the U.S. Department of State announced a reward of up to $10 million for information leading to the arrest of government-sponsored hackers linked to the RedLine operation and its suspected creator.

Explore topics: redline infostealer malware armenian suspect virtual private servers command-and-control
Related:
More Attackers Are Logging In, Not Breaking In
Modern Cars Wreak Havoc on Radar Detectors

© 2026 GoKawiil

About | Editorial Policy | Contact