An alleged administrator of the notorious RedLine infostealer malware has been extradited to the United States to face criminal charges, marking a significant step in global efforts to combat large-scale cybercrime operations. Armenian national Hambardzum Minasyan made his initial court appearance in Texas following his extradition.
Authorities accuse Minasyan of playing a key role in developing and managing the infrastructure behind RedLine, one of the most widely used information-stealing malware strains. He allegedly maintained command-and-control servers and administrative panels that enabled affiliates to deploy the malware and steal sensitive data from victims.
Investigators claim he also handled payments from affiliates and provided support to users of the malware-as-a-service platform. According to court documents, he registered servers, domains, and cryptocurrency accounts used to distribute the malware and collect illicit proceeds.
RedLine malware, active since around 2020, is designed to extract highly sensitive information from infected systems, including login credentials, financial data, browser cookies, and cryptocurrency wallet details. Its accessibility through underground marketplaces has made it a popular tool among cybercriminals worldwide.
Minasyan has been charged with conspiracy to commit access device fraud, violations under the Computer Fraud and Abuse Act, and money laundering. If convicted, he could face up to 30 years in prison.
The case follows a broader international crackdown on the RedLine malware network, including coordinated law enforcement actions in 2024. Despite these efforts, the malware remains a major threat in the cybersecurity landscape.
This extradition highlights increasing global cooperation among law enforcement agencies to track and prosecute cybercriminals, particularly as malware-as-a-service platforms continue to enable large-scale cyberattacks across industries.
