Security News > 2024 > May > LockBit ransomware admin identified, sanctioned in US, UK, Australia

The FBI, UK National Crime Agency, and Europol have unveiled sweeping indictments and sanctions against the admin of the LockBit ransomware operation, with the identity of the Russian threat actor revealed for the first time.
According to a new indictment by the US Department of Justice and a press release by the NCA, the LockBit ransomware operator known as 'LockBitSupp' has been confirmed to be a Russian national named Dmitry Yuryevich Khoroshev, who reportedly earned $100 million as part of the gang's activities.
"The sanctions against Russian national Dmitry Khoroshev, the administrator and developer of the LockBit ransomware group, are being announced today by the FCDO alongside the US Department of the Treasury's Office of Foreign Assets Control and the Australian Department of Foreign Affairs," announced the National Crime Agency.
In the past, similar sanctions caused some ransomware negotiators to no longer assist in ransom payments for sanctioned ransomware operations.
The UK says LockBit was responsible for extorting $1 billion from thousands of companies worldwide, with the DOJ saying that Khoroshev and his affiliates extorted over $500 million in ransom payments.
LockBit ransomware affiliate gets four years in jail, to pay $860k.
News URL
Related news
- Hertz data breach: Customers in US, EU, UK, Australia and Canada affected (source)
- US seizes domain of Garantex crypto exchange used by ransomware gangs (source)
- New kids on the ransomware block channel Lockbit to raid Fortinet firewalls (source)
- Suspected LockBit ransomware dev extradited to United States (source)
- UK fines software provider £3.07 million for 2022 ransomware breach (source)
- US sensor giant Sensata admits ransomware derailed ops (source)
- Ransomware crims hammering UK more than ever as British techies complain the board just doesn't get it (source)