Ukrainian Yaroslav Vasinskyi sentenced for extorting $700m in REvil ransomware attacks
- Yaroslav Vasinskyi, 24, helped carry out more than 2,500 ransomware attacks
- She stole and encrypted victims’ data and demanded cash for its safe return
- They threatened to release data if they refused to pay the ransom
A Ukrainian man has been sentenced to 13 years and seven months in prison for his role in carrying out more than 2,500 ransomware attacks around the world.
Yaroslav Vasinskyi, 24, demanded more than $700 million in ransom for data he stole from his victims or he would release it publicly.
He was also ordered to pay more than $16 million in restitution, the U.S. Department of Justice said.
Vasinskyi carried out the ransomware attacks using the Sodinokibi/REvil ransomware variant, and publicly exposed the victims’ data if they did not want to pay.
“Today, the FBI’s close collaboration with our global partners has once again ensured that a cybercriminal who thought he was beyond our reach must face the consequences of his actions,” said FBI Director Christopher Wray.
Vasinskyi was arrested after crossing the border into Poland and US officials are now working on his extradition
Vasinskyi was responsible for the July 2021 ransomware attack on Florida software vendor Kaseya, the department previously said.
The Ukrainian national was accused in the indictment of breaking into Kaseya while simultaneously distributing REvil ransomware to as many as 1,500 Kaseya customers along with his accomplices.
Their data was encrypted and some customers had to close their doors for days, the Justice Department said.
“Using ransomware, malicious actors from around the world can cripple American businesses in minutes,” said Leigha Simonton, the U.S. attorney for the Northern District of Texas, where Vasinskyi was tried.
Vasinskyi, who was extradited to the United States from Poland, previously pleaded guilty to an 11-count indictment.
He was charged with conspiracy to commit fraud and related activities involving computers, damage to protected computers and conspiracy to commit money laundering.
Deputy Assistant Attorney General Nicole Argentieri, head of the Justice Department’s criminal division, said he hacked thousands of computers around the world.
“Although the conspirators tried to cover their tracks by laundering the victims’ payments, Vasinskyi could not hide from law enforcement,” she said.
“Today, the FBI’s close collaboration with our global partners has once again ensured that a cybercriminal who thought he was beyond our reach must face the consequences of his actions,” said FBI Director Christopher Wray.
Vasinskyi is believed to be responsible for the July 2021 ransomware attack on Florida software vendor Kaseya, the department previously said
“Vasinskyi’s verdict today should be a reminder to ransomware actors everywhere: we will find you and bring you to justice.”
Ransomware is malicious software designed to encrypt data on victims’ computers, giving attackers the opportunity to demand a ransom in exchange for the decryption key.
The co-conspirators demanded ransom payments in cryptocurrency and used cryptocurrency exchanges and mixing services to hide their ill-gotten gains.
To increase their ransom demands, Sodinokibi/REvil co-conspirators also made their victims’ data public when the victims did not want to pay a ransom.