The Hacker News reports that Russian-Canadian national Mikhael Vasiliev has been charged by the U.S. Department of Justice for his alleged involvement in the LockBit ransomware operation.
Charges of conspiracy to intentionally damage protected computers and to transmit ransom demands have been filed against Vasiliev, who could be sentenced to up to five years imprisonment upon his extradition to the U.S.
Canadian law enforcement, who led the arrest of Vasiliev, discovered that the defendant had a file with suspected past or prospective LockBit victims, as well as screenshots of conversations with LockBitSupp. Vasiliev was also found to have a text file with LockBit ransomware deployment instructions, source code, and the control panel website. Nearly $17,332 in bitcoin has also been discovered to be received by Vasiliev from a LockBit victim in February.
"Since first appearing, LockBit has been deployed against at least as many as 1,000 victims in the United States and around the world. LockBit members have made at least $100 million in ransom demands and have extracted tens of millions of dollars in actual ransom payments from their victims," said the Justice Department.
Several U.S. defense and government organizations have been targeted by state-backed Chinese hacking group Bronze Silhouette, also known as Volt Typhoon, for military intelligence over a period of at least two years, according to The Record, a news site by cybersecurity firm Recorded Future.
Russian, North Korean, and Iranian advanced persistent threat operations have been launching more attacks aimed at compromising small- and medium-sized businesses, as well as their regional managed service providers, reports SecurityWeek.