Teodor Vanev Iliev, also known by his pseudonym “Emil Külev,” has been arrested in Sofia, Bulgaria, for his involvement in hacking multiple state institutions and private entities. The 21-year-old hacker, who was previously connected to the cybercrime group RansomedVC, is charged with crimes committed from 2020 to 2024. Authorities allege that Iliev, who operated under various aliases including MAGADANS, Kmeta, Impotent, and Dastardy, targeted numerous organizations, including banks and insurance companies.
Iliev’s hacking activities came to light when he allegedly leaked data from the Bulgarian insurance company LEV INS, shortly before the company’s owner was assassinated. The investigation into Iliev’s activities involved extensive searches across 20 locations in Bulgaria, culminating in his arrest. While the connection between Iliev and ransomware gangs like RansomedVC has been noted, the official announcement did not explicitly link him to ransomware operations.
Cybersecurity experts have pointed out similarities between Iliev’s methods and those of RansomedVC, a group known for high-profile attacks, including one on Sony. The ransomware gang had claimed responsibility for multiple hacks before its downfall, with speculations that some of its reported attacks may have involved reselling stolen data rather than conducting new breaches.
Iliev’s arrest marks a significant development in the investigation of cybercrimes affecting both local and international targets. It underscores ongoing concerns about the impact of cybercriminal activities on sensitive institutions and highlights the challenges in tracking and apprehending high-profile hackers.
Reference:
