Moscow [Russia], November 15 (ANI): A Russian man wanted by the United States for alleged cybercrimes has been arrested on the Thai resort island of Phuket, CNN reported, citing a statement from Thai police.
Authorities said that 35-year-old Denis Obrezko is allegedly part of the cyber espionage group Void Blizzard, identified by Microsoft as a threat actor conducting hacking operations aligned with Kremlin interests. Obrezko was taken into custody on November 6 in a joint operation involving the FBI and Thai authorities. He had arrived in Phuket only a week earlier, according to Thailand’s Cyber Crime Investigation Bureau (CCIB), CNN reported.
“This individual had previously breached security systems and attacked government agencies in both Europe and the United States,” the CCIB said Friday. Obrezko will be held at the Criminal Court in Bangkok pending extradition to the US, authorities said.
Police located him in a Phuket hotel room, where several electronic devices—including a notebook computer, mobile phone, and digital wallet—were seized for forensic analysis.
Russia has acknowledged the arrest. Ilya Ilyin, a diplomat from the Russian Embassy in Thailand, confirmed that a Russian citizen was detained last week on suspicion of cybercrimes at the request of US authorities, according to TASS.
Microsoft Threat Intelligence (MTI) has previously identified Void Blizzard as a major cyber threat targeting countries and sectors perceived as opposing Russian interests. According to CNN, the group’s operations have focused on government, defense, transport, media, NGOs, and healthcare organizations across the United States, Europe, and Ukraine.
Researchers noted that Void Blizzard frequently uses stolen sign-in credentials—often purchased on online marketplaces—to infiltrate organizations. “Once inside, they steal large amounts of emails and files,” MTI said.
The group typically employs basic methods to gain initial access, including “password spraying,” in which common passwords are tested across multiple usernames, and the use of stolen authentication details. “Despite the lack of sophistication in their initial access methods, Void Blizzard has been effective in gaining access to and collecting information from compromised organizations in critical sectors,” MTI added.
Void Blizzard consistently targets government and law enforcement bodies, particularly in NATO countries and nations providing military or humanitarian assistance to Ukraine. Its activities have impacted multiple sectors in Ukraine, including education, transportation, and defense. (ANI)
About The Author
