EVLF DEV is a Syrian threat actor who is a Malware-as-a-service (MaaS) operator. He is responsible for the development of CypherRAT and CraxsRAT, which in the last 3 years was purchased by over 100 distinct threat actors on a lifetime license. EVLF has been observed operating a Telegram channel named "EvLF Devz" that was created on February 17, 2022. It has 10,678 subscribers as of writing.
A search for CraxsRAT surfaces numerous cracked versions of the malware hosted on GitHub, although it appears that Microsoft has taken down some of them over the past few days. The GitHub account of EVLF, however, remains active on the code-hosting service.
James Zhong (a.k.a. Loaded) is a blackhat who was arrested in 2022 and convicted of wire fraud for defrauding online marketplace Silk Road of 50,676.17 BTC. One of Zhong’s other fraud accounts made a single deposit and more than 50 withdrawals before the account ceased its activity. Within a few days of the transactions, Zhong moved the bitcoin out of Silk Road and consolidated them into two high-value amounts.
dcoder is one of the 1st generation defacers of the Philippine Hacking scene in the early 2000s. He is one of the OGs of the hacking group Asianpride.
Mark Sokolovsky is a Ukrainian and the alleged author of Raccoon Stealer. He was arrested in the Netherlands in March, 2022 with the accidental help of his girlfriend. They fled Ukraine together. Her girlfriend documented everything on Instagram.
Raccoon Infostealer is malicious software that infects computers and steals personal information, including email addresses, identification numbers, bank account information, and cryptocurrency information.
Azer Koçulu is an open-source developer who had been publishing and maintaining his packages on npm for other developers to use and include in their packages. Out of his ~270 packages on npm, one of them was called kik, which helped programmers set up templates for their projects.
Kik also happens to be the name of a freeware instant messaging mobile app available on both android and iOS, from the company Kik interactive based in Ontario, Canada. Kik Interactive contacted him objecting to his use of the name, for which the company claimed intellectual property rights, and asked him to change the name. When Koçulu refused, Kik Interactive contacted npm management, who agreed to transfer ownership of the module to Kik without Koçulu's consent. Koçulu then unpublished all of his modules from npm, including a popular eleven-line code module called "left-pad" upon which many JavaScript projects depended. Although Koçulu subsequently published left-pad on GitHub, its sudden removal from npm caused many projects (including Kik itself) to stop working, due to their dependency on the Node and Babel packages.
In view of widespread software disruption, npm restored Koçulu's left-pad and made Cameron Westland of Autodesk its maintainer. The incident sparked controversies over the assertion of intellectual property rights and the use of dependencies in software development.
Alexey Stroganov, who goes by the hacker names "Flint" and "Flint24" is a Russian carder has been a long-standing member of major underground forums since at least 2001. In 2006, Stroganov and an associate Gerasim Selivanov (a.k.a. "Gabrik") were sentenced to six years of confinement in Russia, but were set free just two years into their sentence. He was also arrested in Russia in March 2020 and 23 other hackers.
Ferdinand E. Silva / F. E. SILVA is a Filipino computer programmer from Lipa City, Batangas, Philippines. He has written simple Windows OS viruses before the so-called "Hacked By Godzilla" virus. He was the one who modified "Hacked By Godzilla" virus and named it to "TAGA LIPA ARE" virus and replaced "MS32DLL" with "FS6519", pressing Ctrl + H (Find & Replace) with the script opened in Notepad.
rebarz99 is a Filipino hacker and defacer in the early 2000s. He is a member of PHTeam.
He is the alleged founder and chief administrator of the notorious international cyber criminal marketplace RaidForums. He was arrested in January 2022 following a request from American law enforcement, which is seeking to have him extradited.
Hamza is an Algerian cyber-criminal and a carder who goes by the code name BX1 and has been nicknamed the "Smiling Hacker". He was on the top 10 list of the most wanted hackers by Interpol and the FBI for allegedly embezzling tens of millions of dollars from more than two hundred American and European financial institutions, via a computer virus, the "SpyEYE Botnet" that infected more than 60 million computers worldwide (mostly from the United States),which he co-developed with his Russian accomplice Aleksandr Andreivich Panin, aka "Gribodemon", to steal banking information stored on infected computers.
After a three-year chase, Bendelladj was arrested on January 8, 2013 by Thai police while making a stopover in Bangkok in transit between Malaysia and Egypt. He did not resist arrest. He said goodbye to his family as he was arrested and his wife and daughter continued their journey to Egypt without him. He was extradited in May 2013 to the United States. He was tried in Atlanta where he pleaded guilty on June 25, 2015. He faced a sentence of up to 30 years in prison and a fine of fourteen million dollars.