The U.S. Department of Justice has indicted Rustam Rafailevich Gallyamov, a 48-year-old Russian national from Moscow, for allegedly leading a group responsible for the development and deployment of the Qakbot malware. The malware, which has infected over 700,000 computers globally, was used to facilitate ransomware attacks, causing significant financial damage. This action is part of the broader Operation Endgame, an ongoing international effort to combat cybercrime. Gallyamov's operations continued even after a multinational law enforcement effort in 2023 dismantled the Qakbot botnet. He allegedly shifted tactics to 'spam bomb' attacks, targeting victims as recently as January 2025. The Justice Department has also filed a civil forfeiture complaint against over $24 million in cryptocurrency seized from Gallyamov during the investigation, including 30 bitcoins and over $700,000 in USDT tokens. In a related development, 16 Russians have been charged in connection with the DanaBot malware operation.