May 7, 2024 at 11:57AM
The U.K. National Crime Agency has revealed the details of the administrator of the LockBit ransomware, a 31-year-old Russian national named Dmitry Yuryevich Khoroshev. He has been sanctioned by multiple government departments and charged with numerous counts, facing a maximum penalty of 185 years in prison. The dismantling of the LockBit group has led to revealing new details about their operations.
Certainly! Based on the meeting notes, here are the key takeaways:
1. The U.K. National Crime Agency (NCA) has identified Dmitry Yuryevich Khoroshev as the administrator and developer of the LockBit ransomware operation. Khoroshev has been sanctioned by multiple authorities, including the U.K. Foreign, Commonwealth and Development Office, the U.S. Department of the Treasury’s Office of Foreign Assets Control, and the Australian Department of Foreign Affairs.
2. Europol has announced the possession of over 2,500 decryption keys and continued efforts to support LockBit victims.
3. Khoroshev has become the subject of asset freezes and travel bans. The U.S. Department of State is offering a reward of up to $10 million for information leading to his arrest and/or conviction.
4. The U.S. Department of Justice (DoJ) has unsealed an indictment charging Khoroshev on 26 counts, carrying a maximum penalty of 185 years in prison.
5. Six members affiliated with the LockBit conspiracy have been charged, including Khoroshev and others.
6. LockBit, a prominent ransomware-as-a-service (RaaS) group, has been dismantled as part of a coordinated operation and is estimated to have targeted over 2,500 victims worldwide, receiving more than $500 million in ransom payments.
7. LockBit licenses its ransomware software to affiliates in exchange for an 80% cut of the paid ransoms and is known for its double extortion tactics.
8. Khoroshev, who started LockBit around September 2019, is believed to have netted at least $100 million in disbursements as part of the scheme over the past four years.
9. LockBit’s attempts to resurface have been unsuccessful, and its RaaS scheme involved 194 affiliates, with the number of active affiliates dropping to 69 after law enforcement actions.
10. Khoroshev is responsible for various operational and administrative roles within the cybercrime group and has financially benefited from LockBit ransomware attacks.
If you have any further questions or need additional details, please feel free to ask.