October 1, 2024 at 12:37PM
The United States, United Kingdom, and Australia have imposed new sanctions on the cybercrime syndicate Evil Corp, with the US indicting an individual for conducting BitPaymer ransomware attacks. The sanctions target both individuals and entities associated with Evil Corp, freezing assets and prohibiting transactions with businesses based in the US, UK, and Australia. The syndicate is known for various ransomware families, including Dridex and BitPaymer, and has split into a new operation called DoppelPaymer, utilizing other ransomware variants to evade sanctions.
Based on the meeting notes, here are the key takeaways:
1. The United States, United Kingdom, and Australia have imposed new sanctions on the Evil Corp cybercrime syndicate and its affiliates. These sanctions include freezing assets and preventing businesses from transacting with them in these countries.
2. The sanctioned individuals include Eduard Benderskiy, Viktor Grigoryevich Yakubets, Aleksandr Viktorovich Ryzhenkov, Sergey Viktorovich Ryzhenkov, Aleksey Yevgenevich Shchetinin, Beyat Enverovich Ramazanov, and Vadim Gennadievich Pogodin. The sanctioned entities are Vympel-Assistance LLC and Solar-Invest LLC.
3. Eduard Benderskiy, father-in-law of Evil Corp’s leader Maksim Yakubets, has been identified as a key enabler of the group’s relationship with the Russian state.
4. Aleksandr Ryzhenkov, a suspected Evil Corp member, has been indicted by the United States for conducting ransomware attacks using the BitPaymer ransomware.
5. Ryzhenkov is also identified as a LockBit affiliate and is believed to live in Russia.
6. Evil Corp is known for creating and distributing the Dridex banking Trojan and various ransomware families, including BitPaymer, DoppelPaymer, Grief, Entropy, WastedLocker, Hades, Phoenix CryptoLocker, PayLoadBin, and Macaw.
7. The gang’s leader, Maksim Yakubets, and other members have been added to the Office of Foreign Assets Control (OFAC) sanction list.
Please let me know if there is anything else from the meeting notes that you would like me to focus on.