- Yaroslav Vasinskyi, 24, helped carry out more than 2,500 ransomware attacks
- Stole and encrypted victims’ data and demanded money to return it safely
- Threatened to release the data publicly if they refused to pay the ransom
A Ukrainian man has been sentenced to 13 years and seven months in prison for his role in carrying out more than 2,500 ransomware attacks across the world.
Yaroslav Vasinskyi, 24, demanded more than $700 million in ransom for the data he stole from his victims or else he would make it public.
He was also ordered to pay more than $16 million in restitution, the U.S. Department of Justice said.
Vasinskyi carried out the ransomware attacks using the Sodinokibi/REvil ransomware variant and publicly exposed victims’ data when they did not want to pay.
“Today, the FBI’s close collaboration with our global partners once again ensured that a cybercriminal who thought they were beyond our reach faces the consequences of their actions,” said FBI Director, Christopher Wray.
Vasinskyi was arrested after crossing the Polish border and US authorities are currently working on his extradition.
Vasinskyi was responsible for the July 2021 ransomware attack against Florida software provider Kaseya, the department previously said.
The Ukrainian national was accused in the indictment of breaking into Kaseya and simultaneously distributing REvil ransomware with accomplices to up to 1,500 Kaseya customers.
Their data was encrypted and some customers were forced to close their doors for days, the Justice Department said.
“Using ransomware, malicious actors around the world can cripple American businesses in minutes,” said Leigha Simonton, the U.S. attorney for the Northern District of Texas, where Vasinskyi was tried.
Vasinskyi, who was extradited from Poland to the United States, previously pleaded guilty to an 11-count indictment.
He was charged with conspiracy to commit fraud and related computer activities, damage to protected computers, and conspiracy to commit money laundering.
Principal Assistant Attorney General Nicole Argentieri, head of the Justice Department’s criminal division, said she hacked thousands of computers around the world.
“Although the conspirators attempted to cover their tracks by laundering the victims’ payments, Vasinskyi was unable to hide from law enforcement,” she said.
“Today, the FBI’s close collaboration with our global partners once again ensured that a cybercriminal who thought they were beyond our reach faces the consequences of their actions,” said FBI Director, Christopher Wray.
Vasinskyi is believed to be responsible for the July 2021 ransomware attack against Florida software provider Kaseya, the department previously said.
“Vasinskyi’s sentence today should serve as a reminder to ransomware perpetrators everywhere: we will find you and bring you to justice.”
Ransomware is malware designed to encrypt data on victims’ computers, allowing malicious actors to demand ransom payment in exchange for the decryption key.
The co-conspirators demanded ransom payments in cryptocurrency and used cryptocurrency exchangers and mixing services to hide their ill-gotten gains.
To increase their ransom demands, the Sodinokibi/REvil co-conspirators also publicly exposed their victims’ data when their victims were unwilling to pay the ransom demands.
dailymail us
