Security News > 2023 > February > US, UK slap sanctions on Russians linked to Conti, Ryuk, Trickbot malware
The US and UK have sanctioned seven Russians for their alleged roles in disseminating Conti and Ryuk ransomware and the Trickbot banking trojan.
Conti and Ryuk ransomware extorted at least £27 million from 149 UK individuals and businesses, according to the government's estimate.
"The sanctions are the first of their kind for the UK and signal the continuing campaign targeting those responsible for some of the most sophisticated and damaging ransomware that has impacted the UK and our allies," UK National Crime Agency director-general Graeme Biggar revealed in a statement.
Uncle Sam slaps $10m bounty on Hive while Russia ban-hammers FBI, CIA US reveals 'Target' pic of Conti man with $10m reward offer Meet Wizard Spider, the multimillion-dollar gang behind Conti, Ryuk malware UK Cyber Security Centre's scary new story: One phish, two phish, Russia phish, Iran phish.
At the time, the agency said Conti was the costliest strain of ransomware on record, and payouts from its more than 1,000 victims surpassed $150 million.
"While Wizard Spider's operations have significantly reduced following the demise of Conti in June 2022, these sanctions will likely cause disruption to the adversary's operations while they look for ways to circumvent the sanctions," CrowdStrike's head of intelligence Adam Meyers told The Register.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/02/10/conti_ryuk_trickbot_sanctions/
Related news
- Russian hackers shift to cloud attacks, US and allies warn (source)
- Suspected Russian Data-Wiping 'AcidPour' Malware Targeting Linux x86 Devices (source)
- Russian Hackers May Have Targeted Ukrainian Telecoms with Upgraded 'AcidPour' Malware (source)
- Russian hackers target German political parties with WineLoader malware (source)
- Chinese snoops use F5, ConnectWise bugs to sell access into top US, UK networks (source)
- Russian Hackers Use 'WINELOADER' Malware to Target German Political Parties (source)
- Over 100 US and EU orgs targeted in StrelaStealer malware attacks (source)
- US sanctions crypto exchanges used by Russian darknet market, banks (source)
- Microsoft breach allowed Russian spies to steal emails from US government (source)