An individual of 42 years old and hailing from Russia, Evgenii Ptitsyn, has been transported from South Korea to the United States to confront accusations related to his purported involvement in managing the Phobos ransomware campaign.
The Department of Justice unveiled a 13-count indictment against Ptitsyn, charging him with supervising the trade, dispersal, and operation of the Phobos ransomware variation.
Phobos ransomware, via its partners, is claimed to have preyed upon more than 1,000 public and private bodies globally, coercing over $16 million in ransom payments.
The victims encompassed a broad spectrum of institutions like government bodies, healthcare establishments, academic centers, and critical infrastructure.
The Department of Justice observed that Ptitsyn initiated offering entry to Phobos in November 2020 to “affiliates,” granting them the power to encode the data of victims and demand ransoms in return for decryption codes.
The ransomware operation acted as a “ransomware-as-a-service” (RaaS) forum, with Ptitsyn allegedly serving as an overseer facilitating the distribution, sales, and upkeep of ransomware for partners.
The accusations against Ptitsyn encompass wire fraud, a scheme to commit computer fraud, deliberate harm to protected computers, and blackmail related to hacking.
If found guilty, he could confront a maximum of 20 years in confinement for each count of wire fraud and a decade for each instance of computer hacking misconduct.
Deputy Attorney General Lisa Monaco praised the global teamwork that resulted in Ptitsyn’s detainment and transfer, spotlighting the endeavors of law enforcement establishments from South Korea, Europe, Japan, and the United States. The lawsuit underscores the Department of Justice’s dedication to resisting the worldwide menace of ransomware through international alliances.
Ptitsyn made his initial appearance in the U.S. District Court for the District of Maryland on November 4, subsequent to his extradition from South Korea. The investigation was spearheaded by the FBI’s Baltimore Field Office, reinforced by Europol and the Department of Defense Cyber Crime Center.
This lawsuit signifies a substantial triumph in the ongoing endeavor against cybercrime, substantiating the efficiency of global collaboration in captivating purported ransomware operators to account.
While the threat actors endeavor to aim at diverse industries, law enforcement entities internationally are escalating their endeavors to interrupt these activities and apprehend those accountable for them.
The blog post Phobos Ransomware Admin Extradited As Part Of International Hacking Operation was first published on Cyber Security News.