Ukrainian hacker Yuriy Igorevich Rybtsov, known online as "MrICQ," has been arrested in Italy and is now in U.S. custody. He is linked to the Jabber Zeus cybercrime group, which stole millions from U.S. businesses through sophisticated phishing and malware techniques. The group used a modified version of the ZeuS banking trojan to capture login credentials and intercept one-time passwords. Their operations primarily targeted small to mid-sized companies, employing "money mules" to transfer stolen funds. The 2012 indictment describes Rybtsov as handling notifications of new victims and helping launder stolen proceeds. His arrest follows a long investigation, including a failed appeal against extradition. Notably, the Jabber Zeus crew was innovative in their methods, including a feature called "Leprechaun" that allowed them to modify HTML in victims’ browsers to capture sensitive data. Lawrence Baldwin, a cybersecurity expert, monitored the gang's communications and alerted businesses to impending attacks, often too late to prevent losses. Rybtsov's arrest adds to the list of key figures from Jabber Zeus being apprehended, including Vyacheslav "Tank" Penchukov, sentenced to 18 years in prison in 2022. The group’s leader, Maksim Yakubets, a.k.a. "Aqua," is associated with the broader cybercrime organization Evil Corp, which has reportedly stolen over $100 million. The U.S. government has issued a $3 million reward for information leading to Yakubets's capture. The article highlights the ongoing battle against cybercrime and the complexity of tracking and prosecuting these sophisticated networks.