Hambardzum Minasyan, an Armenian citizen, has been extradited to the United States to face charges for his alleged role in managing the infrastructure of the notorious RedLine infostealer. According to federal authorities, Minasyan was responsible for maintaining servers, processing cryptocurrency payments, and providing technical support for the malware-as-a-service operation.

The extradition of Hambardzum Minasyan marks a significant step in the ongoing legal battle against the administrators of the RedLine malware. Minasyan recently made his initial appearance in a Texas federal court to address allegations that he served as a core administrator for the operation. Prosecutors claim he was deeply involved in the day-to-day functions that kept the malware accessible to cybercriminals worldwide, ranging from managing command-and-control panels to interacting with affiliates who used the software to steal data.

The legal case focuses on Minasyan’s technical contributions, which allegedly included the registration of virtual private servers and domains used to host the illicit infrastructure. Investigators also contend that he used online file-sharing platforms to distribute the malware and established a cryptocurrency account specifically to collect fees from the various affiliates utilizing the service. This infrastructure allowed the group to monetize the theft of sensitive information like passwords and financial credentials on a massive scale.

Because of these activities, Minasyan faces multiple federal charges, including conspiracy to commit access device fraud and money laundering. These charges carry significant weight, with some counts potentially resulting in up to 20 years in prison. The prosecution highlights a growing effort by the United States to hold individuals accountable for providing the backbone of global cybercrime, even when those individuals are located in foreign jurisdictions.

RedLine itself has remained a dominant threat in the cybersecurity landscape since it first surfaced in 2020. Despite a major international law enforcement operation in late 2024 aimed at dismantling its network, the malware continues to be a top choice for digital thieves. Its popularity stems from its efficiency in extracting everything from cryptocurrency wallet data to browser-saved credentials, making it a cornerstone of the malware-as-a-service market.

While Minasyan’s extradition is a victory for law enforcement, the search for other key figures continues. The United States government is still actively pursuing Maxim Alexandrovich Rudometov, the individual believed to be the primary developer behind the software. With a multimillion-dollar reward offered for information leading to his arrest, authorities are signaling that they intend to dismantle the entire hierarchy of the RedLine organization.

Source: https://www.justice.gov/usao-wdtx/pr/armenian-man-extradited-us-faces-charges-role-infostealing-malware-scheme