Russia fees 8 suspected REvil ransomware gang members

Eight members of the REvil ransomware operation which have been detained by Russian officers are presently dealing with legal fees for his or her criminal activity.

On Friday, the Federal Safety Service (FSB) of the Russian Federation – the nation’s home intelligence service, introduced raids on the properties of 14 people suspected to be a part of the REvil ransomware gang.

The operation was executed in cooperation with the Russian Inside Ministry after U.S. authorities reported on the chief of the group and demanded motion be taken towards cybercriminals residing in Russia.

The names of the suspects have been unknown till immediately when Moscow’s Tverskoi Courtroom recognized eight of them from the paperwork of their arrest:

• Muromsky Roman
• Bessonov Andrey
• Golovachuk Mikhail A.
• Zayets Artem N.
• Khansvyarov Ruslan A.
• Korotayev Dmitry V.
• Puzyrevsky D.D.
• Malozemov Alexei V.

The suspects have been jailed for 2 months as a preventative measure and all of them are investigated for unlawful circulation of technique of fee (counterfeit bank cards and different fee paperwork, cryptocurrency).

Due to this, cybercriminals on some hacker boards imagine that the suspects have been arrested for carding (trafficking and utilizing stolen bank cards).

Yelisey Boguslavskiy, head of analysis at AdvIntel risk prevention, says that the arrested people have been possible low-level associates and never the core of the REvil operation, who develop the malware and preserve the ransomware-as-a-service (RaaS) operation.

All arrested people are accused of committing a criminal offense underneath Half 2 of Article 187 of the Prison Code of the Russian Federation, TASS Russian Information Company says, which carries a sentence (PDF) between 5 and eight years in jail.

In response to Martin Matishak from The Report, a senior Biden administration official mentioned that one of many 14 raided suspects was additionally accountable for the ransomware assault that disrupted the operations of Colonial Pipeline. The malware was deployed by the DarkSide ransomware gang, later rebranded as BlackMatter.

REvil made a reputation for itself on Russian-speaking hacker boards by creating a personal, extremely worthwhile RaaS enterprise that accepted solely skilled intruders with entry to giant enterprise networks.

The gang is accountable for among the most publicized ransomware incidents, such because the assault on meat JBS, who paid an $11 million ransom, or Kaseya – a developer of IT administration software program for managed service suppliers, who REvil demanded $70 million for the decryption software.

In response to the U.S. Division of Justice, the REvil ransomware operation acquired greater than $200 million because it emerged in early 2019 and encrypted at the very least 175,000 programs.

It’s unclear if the eight individuals already charged have been a part of the REvil operation’s core or simply associates, however the FSB says that it recognized all members of the ransomware gang:

In raids at 25 addresses of 14 suspected members of the REvil ransomware gang, legislation enforcement discovered and seized greater than $6.6 million in fiat and cryptocurrency.