The US Justice Department on Tuesday introduced the indictment of three Russians who prosecutors say had been at the center of a major cybercrime network that allegedly helped hackers goal hospitals, faculties and banks throughout the US, inflicting $62 million in damages.
The indictment targets one of the extra brazen providers supplied by and for cybercriminals: so-called “bulletproof hosting” providers, which lease web infrastructure to hackers and declare to supply protected haven from regulation enforcement.
US prosecutors accused two Russian males, Aleksandr Volosovik and Kirill Zatolokin, of working a bulletproof-hosting supplier from a company workplace in St. Petersburg, Russia’s second largest metropolis. A Russian girl, Yulia Pankova, can be charged within the felony conspiracy. The prices embrace conspiracy to commit wire fraud and cash laundering.
The Russia-based firm, Media Land, has supported quite a few felony teams who’ve claimed dozens of victims, the Justice Department alleged. The firm was included in 2015, in accordance to Russian enterprise data, and is predicated in a semi-industrial half of St. Petersburg. The State Department is now providing up to $10 million for info on the corporate and its executives because the US authorities investigation into Media Land continues.
NCS has requested remark from an e-mail handle related to Media Land.
US and European regulation enforcement have tracked Volosovik, Zatolokin and Pankova for years. When the US Treasury Department sanctioned them final yr, it launched a photograph of Zatolokin holding a weapon and sporting a Media Land t-shirt.
“To this day, they are likely still shielding criminal activity,” Brett Leatherman, assistant director of the FBI’s cyber division, advised NCS, referring to Media Land.
The FBI will be watching to see if the crackdown on Media Land leads cybercriminals to search out different bulletproof internet hosting providers, Leatherman stated.
“We’re looking for that now — to understand where those shifts may be and what opportunities are available to us in law enforcement and in the intelligence community to target those,” he added.
Michael DeBolt, president and chief intelligence officer at safety agency Intel471, described bulletproof internet hosting suppliers as “fuel to the cybercrime underground.”
“Whether its deploying malware, hosting illicit marketplaces, launching ransomware or safeguarding stolen digital goods, Media Land’s impact should be measured by the years of criminal activity it has supported, enabled and sustained,” DeBolt advised NCS.
The FBI, Secret Service and different regulation enforcement businesses have for years performed operations to disrupt ransomware gangs, which extract hundreds of millions in ransoms yearly from victims. While some officers within the Biden administration floated the thought of banning ransom funds, the thought was finally shelved as a result of of the adversarial impacts it may need on sure victims.
With Russia persevering with to harbor the hackers, FBI brokers are attempting to chip away at the issue by concentrating on the ransomware teams’ computing instruments, some of that are primarily based outdoors of Russia.
The regulation enforcement operations have produced outcomes: hundreds of thousands of {dollars} in cryptocurrency seized and prolific hackers arrested and extradited. But by different measures, the issue is getting extra brazen and regarding. To increase their hacking, a Russian-speaking crime group has been hiring folks to present up to major US regulation companies and plug-in USB sticks, NCS reported last month.
NCS has requested remark from the Russian embassy in Washington, DC.
Tuesday’s indictment is one of a raft of Western regulation enforcement and intelligence actions associated to Russian felony or state-sponsored hacking within the final week. The British authorities and European Union on Monday accused the Russian FSB intelligence service of making an attempt to hack the Polish energy grid final yr in an assault that might have minimize energy for half 1,000,000 folks. For its half, Dutch intelligence accused Russian state-backed hackers of “systematically” breaching video cameras in Europe to surveil navy transport routes and weapon deliveries to Ukraine.
Leatherman, the FBI official, stated the US authorities continues to frequently warn concerning the Russian state-backed hacking as a result of, after an preliminary lull following Russia’s full-scale invasion of Ukraine in 2022, “we have seen, probably over the last year or so, an uptick in [Russian cyber] targeting of the United States.”
NCS’s Darya Tarasova contributed reporting.