Mar 10, 2022 19:00:00

A 22-year-old man using ransomware 'REvil' could be handed over to the United States and sentenced to up to 115 years in prison

In July 2021, a member of a cybercriminal organization of the same name, who appears to have attacked Kaseya, an IT management service, using ransomware 'REvil (Sodinokibi)' was handed over from Poland to the United States. ..

Sodinokibi / REvil Ransomware Defendant Extradited to United States and Arraigned in Texas | OPA | Department of Justice

https://www.justice.gov/opa/pr/sodinokibirevil-ransomware-defendant-extradited-united-states-and-arraigned-texas

REvil Ransom Arrest, $ 6M Seizure, and $ 10M Reward – Krebs on Security
https://krebsonsecurity.com/2021/11/revil-ransom-arrest-6m-seizure-and-10m-reward/

On July 2, 2021, REvil launched a supply chain attack on Kaseya using the ransomware of the same name. Kaseya worked with security companies to respond, but allegedly caused enormous damage to multiple companies.

Large-scale ransomware attack targeting IT management service 'Kaseya' has indirect impact on many companies --GIGAZINE

In addition to Kaseya, REvil is attacking multiple companies and local governments such as Acer ,Apple , andJBS , and the largest organization in the United States called DarkSide, which is said to be derived from or have some relationship with REvil. It is reported to have harmed many people around the world, including attacking oil pipelines .

Under these circumstances, the United States and other countries have strengthened their countermeasures against cyber attacks, and large-scale investigations have been conducted with experts and intelligence agencies.

As a result, Europol has been able to arrest multiple suspects intermittently since early 2021, and in October 2021, a 22-year-old Ukrainian who appears to have been directly involved in the Kaseya attack. Was arrested in Poland.

It was this Ukrainian who was handed over this time, and his name is Yaroslav Vasinskyi. Since Kaseya was an American company, the US Department of Justice has requested Poland to hand over Vasinskyi, and this is what happened this time. Vasinskyi was subsequently charged in the Northern Texas District Court on March 9, 2022.

Vasinskyi has been charged with conspiracy to commit computer-related fraud and related activities, damage to protected computers, and attempted money laundering. Vasinskyi can be sentenced to up to 115 years in prison if convicted on all charges. Judges in the Federal District Court will make decisions in light of US judgment provisions and other statutory factors, the Department of Justice's Public Relations Office has announced.

Attorney General Merrick Garland has stated that the Justice Department will spare no resources to identify and bring trials to multinational cybercriminals targeting Americans, and is suspicious, along with international partners. We will promptly identify and arrest cybercriminals, confiscate their illegally earned profits, and bring them to justice. ' The Justice Department offers up to $ 10 million incentives for information that leads to REvil.