Svoboda Cybersecurity Brief January 11, 2026

Europol Arrests 34 Black Axe Members in Spain for $6M Cyber Fraud

Spanish authorities, with Europol support, arrested 34 suspects linked to the Nigerian Black Axe cybercrime syndicate. The group specialized in BEC scams and money laundering, causing over $6M in damages across 15 years. Searches seized €66,400 in cash and froze €119,350 in accounts.
Source: BleepingComputer

MuddyWater Deploys RustyWater RAT in Middle East Campaigns

Iranian APT MuddyWater targeted Middle Eastern sectors with Rust-based RustyWater RAT via spear-phishing. The malware uses VBA macros in malicious Word docs, gathers system info, and establishes C2 via “nomercys.it[.]com”. This marks a shift from PowerShell/VBS to modular Rust implants.
Source: The Hacker News

BreachForums User Database Leaked Exposing 324K Accounts

The BreachForums hacking forum leaked a MyBB user table with 323,988 records, including IPs (70,296 public). The PGP private key was also exposed but passphrase-protected. Admins claim the data is from an August 2025 backup accidentally stored in an unsecured folder.
Source: BleepingComputer

Russian Basketball Player Freed in Ransomware-Linked Prisoner Swap

Daniil Kasatkin, accused of negotiating for a ransomware gang (likely Conti), was released in a Russia-France prisoner exchange. U.S. prosecutors charged him for attacks on 900 organizations (2020–2022). France detained him in June 2025 under a U.S. warrant.
Source: DataBreaches.net

Share this brief: https://svo.bz/JD5y