Security News > 2021 > October > Ransomware operators behind hundreds of attacks arrested in Ukraine
Europol has announced the arrest of two men in Ukraine, said to be members of a prolific ransomware operation that extorted victims with ransom demands ranging between €5 to €70 million.
The international law enforcement operation was conducted in coordination with the FBI, the French police, and the Ukrainian National Police.
The law enforcement operation took the combined efforts of six French investigators, four from the FBI, one Interpol officer, and two of Europol's cybercrime specialists.
Successful law enforcement operations tend to have chilling effects on the operation of illegal hacking groups as they spread fear and uncertainty among the other members, commonly leading to the group's shutdown or rebranding.
The announcement from Ukraine's cyber-police says the arrested individuals face up to twelve years in prison for violations of two articles of the criminal code in the country, one for unauthorized interference in computer networks and systems, and one for money laundering.
The Ukrainian police also arrested other individuals this year believed to be members of the Clop and Egregor ransomware operations.
News URL
Related news
- Fidelity customers' financial info feared stolen in suspected ransomware attack (source)
- Fidelity customers' financial info feared stolen in suspected ransomware attack (source)
- Alert: GhostSec and Stormous Launch Joint Ransomware Attacks in Over 15 Countries (source)
- Duvel says it has "more than enough" beer after ransomware attack (source)
- FBI: Critical infrastructure suffers spike in ransomware attacks (source)
- JetBrains TeamCity under attack by ransomware thugs after disclosure mess (source)
- Possible China link to Change Healthcare ransomware attack (source)
- Change Healthcare registers pulse after crippling ransomware attack (source)
- BianLian Threat Actors Exploiting JetBrains TeamCity Flaws in Ransomware Attacks (source)
- JetBrains is still mad at Rapid7 for the ransomware attacks on its customers (source)