Skip to main content

Home  »  Crime and FraudUS business news   »   Russian Man Charged Over US Ransomware Attacks

Russian Man Charged Over US Ransomware Attacks

Russian Man Charged Over US Ransomware Attacks

A Russian man has been charged over a series of ransomware attacks targeting people in Texas and across the US.

Aleksandr Viktorovich Ryzhenkov, is accused of using the BitPaymer ransomware to target victims. The indictment alleges Ryzhenkov and his conspirators held sensitive data for ransom, impacting numerous companies.

The Ransomware Attacks

The attacks started in June 2017. Ryzhenkov allegedly gained unauthorized access to computer networks, according to the indictment.

Once inside, he and his associates deployed BitPaymer, a ransomware strain that encrypted the victims’ files, making them inaccessible. An electronic ransom note was then left on the affected systems, providing instructions on how to negotiate the ransom to regain access to the encrypted data.

Ryzhenkov and his group reportedly demanded large sums of money in exchange for a decryption key and the promise not to release the sensitive data online.

employer

Methods Used to Breach Systems

The indictment outlines various methods Ryzhenkov allegedly used to infiltrate the networks.

These included phishing attacks, malware, and exploiting vulnerabilities in hardware and software. The attackers are believed to have extorted millions of dollars from their victims.

Ryzhenkov is currently believed to be in Russia, and the FBI has issued a wanted poster for his arrest.

Need Career Advice? Get employment skills advice at all levels of your career

Treasury Department Sanctions

In coordination with the unsealed indictment, the U.S. Treasury Department's Office of Foreign Assets Control has added Ryzhenkov to its list of specially designated nationals.

This designation blocks any property he holds in the US and prohibits US financial institutions from engaging in transactions with him.

Justice Department and FBI Statements

Deputy Attorney General Lisa Monaco said:

“Today’s charges against Ryzhenkov detail how he and his conspirators stole sensitive data and demanded ransom.”

FBI Deputy Director Paul Abbateadded:

"This indictment sends a clear message to cybercriminals – you will face severe consequences and be held accountable under the law.”

Ransomware: A Growing Threat

Nicole M. Argentieri, Principal Deputy Assistant Attorney General for the Criminal Division, highlighted that ransomware is a top priority for the Justice Department.

She said:

“Ransomware attacks can paralyze companies quickly, with or without a ransom payment.”

“Our office is dedicated to pursuing cybercriminals, no matter where they hide.”

Ongoing Investigations and Prosecutions

The FBI’s Dallas Field Office is investigating the case, with Trial Attorney Debra L. Ireland from the Justice Department’s Computer Crime and Intellectual Property Section and Assistant U.S. Attorney Vincent J. Mazzurco for the Northern District of Texas leading the prosecution.

Any victims of ransomware are encouraged to contact their local FBI field office, and additional information on ransomware prevention is available at StopRansomware.gov.

  • An indictment is merely an allegation. All defendants are presumed innocent until proven guilty beyond a reasonable doubt in a court of law.

Follow us on YouTube, X, LinkedIn, and Facebook