BadB II

FBI, Israel, FSB. Colombian sex scandals. Agent Arakhamia

Sep 06, 2025

∙ Paid

We recently looked at the Ukrainian army’s main hacker Vladislav Horohorin’s (BadB) links with Israeli military intelligence.

We discussed the improbability of Horohorin’s life story in Israel. He claimed to have done time in Israeli prison for desertion, but not for the fact that he hacked into the IDF’s internet system.

The conclusion seems obvious - no one could do such things and get away with them without coming to an agreement with Israeli military intelligence. That’s precisely the modus operandi of the IDF’s unit 8200 - identify promising young hackers and get them to work for Israel. They are also not allowed to publicly admit to their membership in the unit.

Horohorin certainly has rich experience for his current position working alongside ‘the IT Army of Ukraine’. BadB was described by the US Justice Department as ‘one of the most notorious credit card traffickers in the world’, and by the US secret services as the leader of CarderPlanet, ‘one of the most sophisticated organizations of online financial criminals in the world’.

Today we’ll examine BadB’s cooperation with the FBI following his 2012 extradition to the US.

The nature of Horohorin’s cooperation with American intelligence - as well as the constantly reoccurring Israeli traces - will also allow us to put into perspective the relationship between Microsoft and David Arakhamia. Arakhamia, currently one of the most powerful men in the Ukrainian government, was also implicated with CarderPlanet in the 2000s - in his interviews, Horohorin makes it quite clear that Arakhamia has been an FBI agent ever since.

We’ll also look at BadB’s productive time in US prison, where he smuggled in goods using drones - in alliance with one of America’s most notorious fraudsters.

Finally, we’ll interrogate BadB’s fairly unconvincing denials of cooperation with the Russian FSB, and the significance of the fact that this Israeli-US agent posed as a pro-Russian hacker all the way up to 2022. Especially given that this is someone who constantly posted Russian databases when war started in 2022, writing:

In the near future we will publish a full list of the children and grandchildren of pilots, both military and civilian. Don’t be surprised, scum, if your fuckers have their heads twisted off or get stabbed on the way home from school

This strategy is described more laconically by the Russian cybersecurity firm FP:

Horohorin’s favored tactic is to publish compromised data from targeted companies and encourage the use of this data to carry out further attacks through their contractors. On November 8, 2024, [Horohorin’s] CyberSec announced the hacking of more than 30,000 Russian servers running on Bitrix. They also published an offer to sell them.

Isn’t it interesting that CyberSec, set up as a ‘cybersecurity consultancy’ in a US prison by Horohorin after he started cooperating with the FBI, is now engaged in cyber-war against Washington’s enemies. Let’s begin.

Continue reading this post for free, courtesy of Events in Ukraine.

Or purchase a paid subscription.