May 7, 2024 at 10:07AM
The FBI, UK National Crime Agency, and Europol have revealed the identity of the Russian threat actor behind the LockBit ransomware operation, as Dmitry Yuryevich Khoroshev. Sanctions and indictments have been imposed, with a $10 million reward offered. Law enforcement also obtained 2,500 decryption keys and disrupted the ransomware infrastructure in a recent operation.
Key takeaways from the meeting notes:
1. The FBI, UK National Crime Agency, and Europol have issued indictments and sanctions against the administrator of the LockBit ransomware operation, revealing the identity of the Russian threat actor to be Dmitry Yuryevich Khoroshev.
2. Sanctions include asset freezes and travel bans against the administrator and developer of LockBit, and a $10 million reward is being offered by the US for information leading to LockBitSupp’s arrest and/or conviction.
3. Sanctions will likely cause significant disruption for the operation as paying a ransom could violate the sanctions, resulting in government fines on companies. This has previously discouraged ransomware negotiators from assisting in ransom payments for sanctioned operations.
4. Law enforcement’s hacking and seizure of LockBit infrastructure allowed them to obtain more decryption keys than previously announced, including 2,500 decryption keys, and they are continuing to assist LockBit victims in recovering their files for free.
It’s important to note that this is a developing story, and further information may be released by the US Department of Justice regarding the indictment.