The United States Secret Service has announced a massive $2.5 million reward for information leading to the arrest and conviction of Volodymyr Iuriyovych Kadariya, a 38-year-old Belarusian national.
Kadariya, now one of the most wanted cybercriminals, faces serious charges including conspiracy to commit wire fraud, conspiracy to commit computer fraud, and two counts of substantive wire fraud.
The charges against Kadariya revolve around his alleged involvement in a widespread malware campaign that used the Angler exploit kit. According to the unsealed indictment, this malware was used to distribute malicious advertisements to millions of computers worldwide between 2013 and 2022.
The Scareware Scheme
Kadariya and his co-conspirators are accused of running a sophisticated scareware scam. This scheme involved displaying fake warning pop-ups on victims’ devices, falsely claiming that their computers were infected with malware or viruses. The pop-ups then offered a “free” malware scan and software download to fix the issue. However, instead of helping, these downloads either did nothing or installed additional malware on the victims’ computers.
This scam, which lasted nearly a decade, tricked users into paying for unnecessary services, installing harmful software, and even giving remote access to their computers. The Secret Service revealed that Kadariya and his associates used Russian dark web forums to sell access credentials to the compromised devices, enabling further fraud or the delivery of more malware.
Despite the severity of the allegations, it is important to remember that Kadariya is presumed innocent until proven guilty in a court of law.
International Law Enforcement on the Hunt
Brian Lambert, the U.S. Secret Service assistant director of investigations, emphasized the global effort to apprehend cybercriminals. “Cybercriminals should know that even if they attempt to hide their criminal conduct behind the anonymity of the internet, they will eventually be apprehended and held accountable for their actions,” Lambert stated.
The use of large bounties, like the $2.5 million offered for Kadariya, has proven effective in the past. However, cybersecurity experts like Dr. Ilia Kolochenko, CEO at ImmuniWeb, warn of potential drawbacks. Kolochenko pointed out that geopolitical tensions could lead to former cybercrime partners betraying each other for a share of the reward or a larger piece of the illicit market. He also highlighted concerns about the protection of personal data and the ethical implications of offering bounties only upon conviction.
A Record-Breaking Bounty
While $2.5 million is a significant reward, it pales in comparison to the bounty on another wanted hacker, Denis Gennadievich Kulkov. The U.S. Secret Service has offered a staggering $10 million reward for information leading to Kulkov’s arrest and conviction. Kulkov is charged with access device fraud, computer intrusion, and money laundering, all linked to his operation of Try2Check, a service used by cybercriminals to verify stolen credit card numbers.
Kulkov’s case is particularly noteworthy because it has been included in the Transnational Organized Crime Rewards Program (TOCRP). Established in 2013, TOCRP allows the U.S. Secretary of State to offer rewards of up to $25 million for criminals operating outside the U.S., particularly those involved in transnational crimes that cause significant harm to communities, such as cybercrime.
A Global Effort
These cases highlight the ongoing battle against cybercrime, which knows no borders. The substantial rewards offered by the U.S. government demonstrate the seriousness with which they approach these threats. As cybercriminals continue to evolve and adapt, international law enforcement agencies are intensifying their efforts to bring these criminals to justice and protect the public from their malicious activities.