Security News > 2023 > February > US, UK slap sanctions on Russians linked to Conti, Ryuk, Trickbot malware
The US and UK have sanctioned seven Russians for their alleged roles in disseminating Conti and Ryuk ransomware and the Trickbot banking trojan.
Conti and Ryuk ransomware extorted at least £27 million from 149 UK individuals and businesses, according to the government's estimate.
"The sanctions are the first of their kind for the UK and signal the continuing campaign targeting those responsible for some of the most sophisticated and damaging ransomware that has impacted the UK and our allies," UK National Crime Agency director-general Graeme Biggar revealed in a statement.
Uncle Sam slaps $10m bounty on Hive while Russia ban-hammers FBI, CIA US reveals 'Target' pic of Conti man with $10m reward offer Meet Wizard Spider, the multimillion-dollar gang behind Conti, Ryuk malware UK Cyber Security Centre's scary new story: One phish, two phish, Russia phish, Iran phish.
At the time, the agency said Conti was the costliest strain of ransomware on record, and payouts from its more than 1,000 victims surpassed $150 million.
"While Wizard Spider's operations have significantly reduced following the demise of Conti in June 2022, these sanctions will likely cause disruption to the adversary's operations while they look for ways to circumvent the sanctions," CrowdStrike's head of intelligence Adam Meyers told The Register.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/02/10/conti_ryuk_trickbot_sanctions/
Related news
- Russian Espionage Group Targets Ukrainian Military with Malware via Telegram (source)
- Russian charged by U.S. for creating RedLine infostealer malware (source)
- Uncle Sam outs a Russian accused of developing Redline infostealing malware (source)
- US warns of last-minute Iranian and Russian election influence ops (source)
- Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails (source)
- Russian suspected Phobos ransomware admin extradited to US over $16M extortion (source)
- Russian Hackers Deploy HATVIBE and CHERRYSPY Malware Across Europe and Asia (source)
- Faraway Russian hackers breached US organization via Wi-Fi (source)
- UK disrupts Russian money laundering networks used by ransomware (source)
- US charges Russian-Israeli as suspected LockBit ransomware coder (source)