Jan Marsalek in 2026: How Wirecard's Fugitive COO Became Europe's Most-Watched Counter-Intelligence File

When Wirecard collapsed in June 2020, its chief operating officer Jan Marsalek simply disappeared. Almost six years on, his case has migrated from corporate-fraud file to one of Europe’s most consequential counter-intelligence stories, with implications that now reach well beyond the financial-services sector that birthed it.

What is confirmed

A series of investigations led by Bellingcat, Der Spiegel, Standard, the BBC and several national prosecutors’ offices has established, with substantial documentary support, that Marsalek had a long-running operational relationship with Russian military intelligence (GRU) and federal security service (FSB) officers from at least 2014. The relationship involved facilitation of payments, identity-document support, and at least one in-person meeting in Vienna with a known FSB officer in early 2020.

German federal prosecutors indicted Marsalek in absentia in 2024 on the underlying Wirecard fraud charges. A second, espionage-related indictment was returned in 2025, naming him as a central node in a network that allegedly used a Bulgarian-passport-holding cluster of operatives later prosecuted in the United Kingdom.

The Moscow consensus

The working assumption across Western services, on the evidence in the public domain, is that Marsalek is now in Russia, probably in or near Moscow, possibly under a new identity. He has been reported variously in Belarus, Dubai and the Russian-occupied territories of Ukraine; none of these reports has been independently confirmed, and several were almost certainly Russian information operations.

His value to Russian services is harder to assess. Some former intelligence officers argue Marsalek is now most useful as a reputational liability for Western fintech, a walking proof-of-concept that significant European financial-services figures can be cultivated. Others see him as a transactional asset whose principal worth was the German payments-data flow during his Wirecard tenure.

What it changes for European fintech

The Marsalek file has accelerated a series of regulatory and supervisory changes in Europe. The European Banking Authority’s 2025 guidelines on “fit and proper” assessments for senior managers of EU payment institutions now explicitly include intelligence-service connections as a relevant factor, with information-sharing arrangements with national counter-intelligence services. BaFin and the FCA have both added security-vetting layers for large e-money authorisations.

Whether those changes would have stopped a 2020-vintage Wirecard is a question regulators tend not to engage with directly. The honest answer is probably no, the institutional capture in Munich went deeper than any fit-and-proper test would have caught.

Open questions for 2026

The most consequential remaining unknowns include the precise extent of any data flows from Wirecard to Russian customers during Marsalek’s tenure, the identities of those in his German political network who may have been recruited or unwittingly used, and whether the 2024 espionage indictments will be followed by further charges that draw in current or former officials. Several of these questions are the subject of active proceedings now scheduled to begin in late 2026.