According to the BKA , the Trickbot group (and its successor projects) utilized various malware, including Trickbot, Bazarloader, SystemBC, IcedID, Ryuk, Conti, and Diavol, to steal sensitive data and deploy ransomware, leading to damages in the three-digit million range. Operation Endgame Update: The 2026 Status
Tracking any movements outside of Russia that could lead to his apprehension. aleksei valerevich kovalskii updated
The search for him remains active, with the BKA seeking information regarding his location, travel, and online aliases. Why This Case Matters According to the BKA , the Trickbot group
The Trickbot group has been active since at least 2016, evolving from a simple banking trojan into a sophisticated "malware-as-a-service" operation. The group is responsible for infecting hundreds of thousands of computer systems globally, targeting hospitals, schools, and private companies. Why This Case Matters The Trickbot group has
: The BKA and German federal prosecutors have issued dedicated arrest warrants targeting Kovalskii for membership in a foreign criminal organization.
Deployed to establish stealthy persistence and command-and-control communication channels.