A notorious cybercriminal, operating under multiple aliases (ALTDOS, DESORDEN, GHOSTR, Omid16B), was arrested in Thailand after a four-year pursuit by law enforcement, aided by Group-IB. The hacker targeted internet-facing Windows servers, exfiltrated personal data, and extorted victims by threatening public exposure. Initially known as ALTDOS in 2020, he rebranded multiple times to evade detection, refining his tactics over time. He mainly targeted large private companies for financial gain while avoiding government agencies. His final alias, Omid16B, saw a shift in global targeting and the use of social media for announcements. On February 26, 2025, Thai police successfully arrested him, marking the end of his cybercrime spree.

‍