Yaroslav Vasinskyi, a Ukrainian hacker having links with the REvil ransomware group has been extradited to the United States. He will face charges for his role in carrying out file-encrypting malware attacks against several companies, including Kaseya last July.
The 22-year-old hacker was earlier arrested in Poland in October 2021, and now the U.S. Justice Department (DoJ) has filed charges of conspiracy to commit fraud and related activity in connection with computers, damage to protected computers, and conspiracy to commit money laundering.
His acts are equivalent to extortion since it involves the bad actors encrypting victims’ data and taking it hostage in return for a monetary payment to recover the data. Failing to pay the ransom they threaten to publish the stolen information online or sell it to third parties.
The REvil ransomware group has been involved in a number of incidents related to propagating infections to more than 175,000 computers, claiming nearly $200 million paid in virtual currency ransoms, in addition to the headline-grabbing JBS and Kaseya cyberattacks.
Vasinskyi was taken to the city of Dallas on March 3 under an extradition treaty between the U.S. and Poland. His charges were formally read in the Northern District of Texas, if proven guilty he will face a total prison term of 115 years.
The defendant is alleged to be responsible for deploying the Sodinokibi/REvil ransomware, according to the indictment. He managed to do this via a supply chain attack that targeted as many as 1,500 customers of Kaseya across the globe and demanded a bitcoin ransom in exchange for gaining back access to the locked files.
Deputy Attorney General Lisa O. Monaco said, “Just eight months after committing his alleged ransomware attack on Kaseya from overseas, this defendant has arrived in a Dallas courtroom to face justice. When we are attacked, we will work with our partners here and abroad to go after cybercriminals, wherever they may be.”
Hackers Abuse Mitel Devices to Amplify DDoS Attacks by 4 Billion Times
Chinese Hacking Group APT41 behind at least 6 US State Government Hacking
RagnarLocker Malware – Ragnar Ransomware Gang Goes Wild – Hits 52 critical US Orgs