In an unexpected move, Russian authorities have charged Mikhail Matveev, also known by his online alias “Wazawaka,” a prominent figure in the ransomware underworld. According to a statement from Russia’s interior ministry, Matveev is accused of creating malware used to extort commercial organizations. The local state news agency RIA Novosti, citing unnamed sources, confirmed Matveev’s involvement with notorious ransomware groups such as Babuk, Conti, DarkSide, Hive, and LockBit.
Charges and Legal Proceedings
A security researcher operating under the pseudonym “club1337” revealed that they had contacted Matveev, who confirmed being charged under Article 273 of Russia’s Criminal Code. This statute penalizes the creation or use of software designed to damage, disrupt, or manipulate information systems. If convicted, Matveev could face up to four years in prison or a fine.
Matveev reportedly paid two fines and had a significant amount of cryptocurrency confiscated. For now, he remains out on bail and unharmed, awaiting further legal proceedings, according to “club1337.” However, these claims have not been independently verified.
U.S. Sanctions and Prior Indictments
Matveev has been a well-known target of U.S. law enforcement. In May, he was sanctioned and indicted by the U.S. government, which offered a $10 million reward for information leading to his capture or conviction. His crimes allegedly include an attack on the Washington, D.C., Metropolitan Police Department in April 2021, as part of the Babuk ransomware group. The group reportedly stole over 250 GB of data and threatened to expose sensitive information unless a ransom was paid.
Despite these allegations, Matveev claimed in past interviews that such accusations had little impact on his activities. Speaking with Recorded Future News in 2023, he expressed confidence in his immunity from U.S. law enforcement, stating that he continued to live an “ordinary life” in Russia. He even outlined plans to train young Russians in cybersecurity, aiming to counteract potential FBI recruitment efforts.
A Shift in Russia’s Stance?
Historically, Russia has been reluctant to prosecute hackers whose activities align with state interests or target foreign adversaries. Matveev’s arrest is part of a growing trend suggesting a shift in this stance. In October, four members of the REvil ransomware group were sentenced to prison in Russia following high-level diplomatic pressure from U.S. President Joe Biden. Similarly, earlier this year, Russian authorities arrested three alleged members of the SugarLocker ransomware gang, resulting in varying legal outcomes.
These prosecutions mark a rare but notable deviation from Russia’s traditional tolerance—or tacit support—of cybercriminals targeting Western nations.
Implications for Cybersecurity
Matveev’s arrest underscores an evolving landscape for cybercrime enforcement. While it remains unclear whether this case represents a genuine crackdown or a political maneuver, it sends a message to other cybercriminals operating within Russia. The cooperation between global authorities and Russia on this case could also signal a thaw in the often-contentious international approach to combating ransomware.
For now, the cybersecurity community will be closely monitoring Matveev’s legal proceedings to assess whether this is an isolated case or a harbinger of broader enforcement changes within Russia’s cyber landscape.
Sponsored • TRJ Ads
Inquiries: contact@therealistjuggernaut.com
