The US Division of Justice has positioned an $11 million bounty on Ukrainian nationwide Volodymyr Viktorovich Tymoshchuk—who additionally goes by the aliases deadforz, Boba, msfv, and farnetwork—accusing him of being the mastermind behind ransomware that has been used to assault over 250 US corporations, in addition to others all over the world. The DoJ says that these cybercrimes resulted within the theft of an eye-watering $18 billion over three years.Tymoshchuk is accused of being “an administrator” behind varied ransomware together with MegaCortex, LockerGoga, and Nefilim. From late 2018 to October 2021 Tymoshchuk is alleged to have first operated LockerGoga and MegaCortex assaults, which within the latter case modifications the passwords and encrypts all information on a bunch laptop, earlier than issuing threats to the consumer and calls for for cost. LockerGoga was utilized in an assault on Norsk Hydro, a Norwegian power firm, that affected all of its 170 websites and prompted an estimated $81 million in damages.When these ransomwares have been decrypted by cybersecurity professionals, Tymoshchuk allegedly moved on to engineer and handle Nefilim, which is bought to third-party attackers in alternate for 20% of the funds stolen in profitable assaults. The place MegaCortex was meant for company targets it ended up getting used to focus on particular person customers, whereas Nefilim (per the indictment) targeted solely on corporations valued at $100 million and above (thanks, Tom’s {Hardware}).
Associated articles
“Volodymyr Tymoshchuk is charged for his position in ransomware schemes that extorted greater than 250 corporations throughout america and lots of extra all over the world,” stated Performing Assistant Lawyer Basic Matthew R. Galeotti of the Justice Division’s Prison Division. “In some situations, these assaults resulted within the full disruption of enterprise operations till encrypted information could possibly be recovered or restored. This prosecution and at present’s rewards announcement displays our dedication to guard companies from digital sabotage and extortion and to relentlessly pursue the criminals accountable, irrespective of the place they’re positioned.””Tymoshchuk is a serial ransomware felony who focused blue-chip American corporations, well being care establishments, and huge international industrial companies,” stated US Lawyer Joseph Nocella Jr. in a DoJ assertion. “For a time, the defendant stayed forward of legislation enforcement by deploying new strains of malicious software program when his outdated ones have been decrypted. At this time’s costs replicate worldwide coordination to unmask and cost a harmful and pervasive ransomware actor who can now not stay nameless.”
(Picture credit score: Getty Photos – Peter Dazeley)It does sound like this can be a cat-and-mouse sport that is been happening for a while. The indictment says that, whereas Tymoshchuk and his co‑conspirators compromised greater than 250 corporations within the US, “many of those extortion makes an attempt have been unsuccessful” as a result of the Feds have been in a position to warn the businesses affected earlier than the precise ransomware was deployed. Along with this, in September 2022 decryption keys for LockerGoga and MegaCortex have been made publicly obtainable as a part of the “No Extra Ransomware” challenge.Who desires to listen to some FBI brokers getting sizzling for justice? “At this time’s announcement ought to function [a] warning: cyber criminals might consider they act with impunity whereas conducting dangerous cyber intrusions, however legislation enforcement is onto you and can maintain you accountable,” stated Assistant Director Christopher G. Raia of the FBI, including that the bureau “will proceed to scour the globe to convey to justice any particular person trying to make use of the anonymity of the web to commit crime.”Hold updated with crucial tales and the most effective offers, as picked by the PC Gamer workforce.Particular Agent Christopher J. S. Johnson provides that “The criminals behind Nefilim ransomware might consider they’ll revenue from extortion and information leaks, however they’re fallacious.”Tymoshchuk is charged with seven counts in complete: two counts of conspiracy to commit fraud and associated exercise in reference to computer systems, three counts of intentional injury to a protected laptop, one depend of unauthorized entry to a protected laptop, and one depend of transmitting a risk to reveal confidential data. The fees might end in life in jail.The US Division of State’s Transnational Organized Crime Rewards Program is now providing rewards totaling as much as $11 million for data that results in the arrest and/or conviction of Tymoshchuk or his co-conspirators.
