The Ukrainian National has been extradited from Spain to the United States to face allegations against companies of conducting Nephelim Rancemware attacks.
Suspicious, Artem Alexandrovich Strijak, 35, was arrested in Spain in June 2024 and was extradited in the US on 30 April 2025.
According to the US Department of Justice, Strijac reportedly participated in ransomware attacks, targeting high-revenue companies, mainly in the United States, Norway, France, Switzerland, Germany and Netherlands.
In June 2021, the strizak allegedly became associated with Nephelim rangesware operation in exchange for 20% of any ransom payment generated by attacks.
Strike and their co-scripts researched the possible goals using online platforms to collect information about the company’s revenue, size and contact details. One of the more popular sites used for research goals by Ransomware gang is Zoominfo.
The DOJ states, “In July 2021 or in July 2021, in an exchange, a Nephelim Administrator encouraged him to target companies over $ 200 million in annual revenue in these countries.” Press release,
When conducting the attacks, Nephelim collaborates violate corporate networks, steal data, and then encry the equipment using a ransomware encrypter. The attackers then seek ransom payment in bitcoin to obtain a decrying key and the stolen data is not leaked. If a victim refuses to pay, attackers publish stolen data online on data leak sites.
Nephilim Rainmware launched in 2020, shared most of its codes with Nemti Rainmware. Ransomware encrypted files using AES-128 encryption and added the “.nefilim” file extension to encrypted files.
The ransom notes called “nefilim-decrypt.txt” were created throughout the device’s file system, warning that the stolen data would be leaked within seven days if the talks were not started.
Source: Bleepingcomputer
Nephilim is believed to have been re -prepared under other names including Fusion, Milihpen, Gangbang, Nemti and Karma.
Some companies collided with Nephilim attacks include toll group, Orange and Whirlpool.
Striizak is accused of cheating and conspiracy to perform related activity, including forcible recovery. The prosecution was unheard of the federal court in Brooklyn, where Strijak was given the US Magistrate Judge Robert M. The levy has been determined for convergence.
When convicted, Strijak suffers from a prison of up to five years.
Based on the analysis of 14M malicious tasks, search for the top 10 MITERAT & CK techniques behind the 93% attacks and how to defend them against them.
